Download as PDF, PPTX
Uploaded bySylvain Wallez
Kibana + timelion: time series with the elastic stack
The document discusses Kibana and Timelion, which are tools for visualizing and analyzing time series data in the Elastic Stack. It provides an overview of Kibana's evolution and capabilities for creating dashboards. Timelion is introduced as a scripting language that allows users to transform, aggregate, and calculate on time series data from multiple sources to create visualizations. The document demonstrates Timelion's expression language, which includes functions, combinations, filtering, and attributes to process and render time series graphs.
In this document
Powered by AI
Presentation by Sylvain Wallez on Kibana + Timelion, introducing the Elastic Stack and agenda.
Highlights features of Elastic Stack 5.0: speed improvements, dimensional fields, and new tools like Painless scripting.
Evolution of Kibana from version 4.x to 5.0 focusing on data visualization and key features like dashboards and monitoring.
Steps to create a Kibana dashboard, including selecting indices, visualizing data, and layout for live updates.
Explanation of Timelion's capabilities for time series data analysis, including its expression language and functions.
Open floor for questions and answers regarding the presentation topics.
More Related Content
Similar to Kibana + timelion: time series with the elastic stack
Kibana + timelion: time series with the elastic stack
- 1. 1 Sylvain Wallez @bluxte Kibana +Timelion: Time series with the Elastic Stack
- 2. 2 Agenda From ELK toElastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4
- 3.
- 4. 4 The Elastic Stack ElasticCloud Security Monitoring Aler0ng Graph X-Pack KibanaUser Interface ElasticsearchStore, Index, & Analyze Ingest Logstash Beats +
- 5. 5 What’s new inElastic Stack 5.0 ? ‒ Dimensional fields – speed up and better compression of numerical data ‒ Ingest node – avoids using Logstash for simple setups ‒ Rollover & Shrink API – better handling of non-hot data ‒ Painless – new fast & secure scripting langage ‒ Complete UI redesign ‒ Control center: config, monitoring, dev tools… and dashboards ‒ Timelion: for time series Unified release, same version number for all products
- 6. 6 What’s new inElastic Stack 5.0 ? • ‒ Up to 50% faster ‒ Integration with Kafka ‒ New filters • ‒ Libbeat – framework pour construire des agents ‒ MetricBeat, PacketBeat, FileBeat ‒ {Community}Beats, lots of them ‒ Immediate availability of new versions ‒ Automated upgrades Unified release, same version number for all products
- 7. 7 Agenda From ELK toElastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4
- 8.
- 9. 9 Kibana evolution: 4.x DataVisualizationManagement Discover Dashboard Visualize
- 10. 10 Kibana evolution: 4.x DataVisualizationManagement Discover Dashboard Visualize Monitoring
- 11. 11 Graph Kibana evolution: 4.x DataVisualizationManagement Discover Dashboard Visualize Monitoring
- 12. 12 Graph TimelionSense Kibana evolution: 4.x DataVisualizationManagement Discover Dashboard Visualize Monitoring
- 13.
- 14.
- 15. 15 Creating a Kibanadashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering
- 16.
- 17. 17 Creating a Kibanadashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering
- 18.
- 19. 19 Creating a Kibanadashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering
- 20.
- 21. 21 Creating a Kibanadashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering
- 22.
- 23. 23 Creating a Kibanadashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering
- 24.
- 25.
- 26. 26 Agenda From ELK toElastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4
- 27. 27 Why Timelion? • Elasticsearch queries ‒ Selectlots of items (lightning fast) ‒ Aggregations make them understandable • Need more than that ‒ Correlation, calculation, filtering ‒ Assemble multiple data sources • Timelion started as an experiment ‒ Escape the UI and use the flexibility of a language Because there’s more than search
- 28. 28 Time series resampling Acommon time reference to allow calculations Value Value Time Time Bucket
- 29. 29 Timelion expression language Atransformation & aggregation pipeline ES World Bank Graphite - Sampling - Aggregation - Calculation - Graphic attributes Data sources Transformations Time series - Data - Metadata - Graphic attributes
- 30. 30 The Timelion expressionlanguage • Functions ‒ abs, cusum, derivative, fit, holt, log, min, max, movingaverage, movingstd, sum, trend • Combinations ‒ add, divide, multiply, plus, substract • Filtering ‒ condition, if • Graphic attributes ‒ bars, color, hide, label, legend, lines, points, range, title, yaxis • Data sources ‒ elastic, graphite, wbi, quantl A rich function library
- 31. 31 The Timelion expressionlanguage
- 32.
- 33. 33 Agenda From ELK toElastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4
- 34.