LI300: Logfile Analysis with Elasticsearch, Logstash, Kibana

Training: Linux/Unix

Participants learn practical methods for the secure transport, storage, and analysis of log data using tools such as Logstash, Elasticsearch, Kibana, and Graylog. Workshops compare different log sources, transport methods, and formats, and practice real-world use cases such as full-text search, statistical analyses, and long-term analyses. Suitable for system administrators with Linux experience.

Hybrid training Hybrid training

Start: 2025-11-03 | 10:00 am

End: 2025-11-06 | 04:00 pm

Location: Nürnberg

Price: 2.390,00 € plus VAT.

Request prefered appointment period:

* All fields marked with an asterisk are mandatory fields.

Agenda:

  • Introduction
    • Traditional approaches to analyze protocols
    • What problems are associated with this?

  • Concepts and terms
    • The path of a log message
    • The JSON format

  • Common log sources
    • Syslog
    • Elastic Beats and Fluent Bit
    • Specific services like web servers, MySQL, PostgreSQL
    • Network components
    • Windows Event Log, Windows services

  • Transport and storage of log messages
    • Logstash
    • Fluentd
    • Graylog
    • Central rsyslog/syslog-ng server

  • Storage and search
    • ElasticSearch
    • MongoDB

  • Interfaces
    • Kibana
    • Graylog

  • Meaningful combinations and integrated solutions
    • Logstash + Elasticsearch + Kibana
    • Fluentd + Elasticsearch + Kibana
    • Graylog + Elasticsearch

  • VMware™ Log Insight
    • Splunk

  • Use case scenarios
    • Full-text search
    • Correlations, multiple queries
    • Statistical analysis: frequencies, trends
    • Long-term analysis
    • Heuristics
    • Script-driven evaluation
    • Role distribution

Objectives:

The course LI300 Logfile Analysis with Elasticsearch, Logstash, Kibana provides an overview of common software solutions for transporting, storing and analyzing log data generated in operations.
The exemplary setup and comparison of the discussed tools using various application scenarios provides an overview of their possibilities and limitations.
The training concludes with recommendations for different use cases.

Target audience:

The seminar LI300 Logfile Analysis with Elasticsearch, Logstash, Kibana is ideal for:

  • Linux/Windows System Administrators
  • Administrators of heterogeneous environments with many different log formats

Prerequisites:

To be able to follow the course content and learning pace in the workshop LI300 Logfile Analysis with Elasticsearch, Logstash, Kibana effectively, extensive experience with the respective system administration and basic knowledge of working with the Linux command line are required.

Description:

The course LI300 Logfile Analysis with Elasticsearch, Logstash, Kibana provides hands-on training on how log data from Linux, UNIX, and Windows systems can be securely transported, stored, and analyzed. After an introduction to classic and modern log file analysis approaches, participants learn tools such as Logstash, Elasticsearch, Kibana, Graylog, and others.

Various log sources, transport methods, formats, and interfaces are presented and compared in workshops. Participants practice integration, flexible combination, and real-world use cases (e.g., full-text search, statistical analysis, long-term analysis) and receive concrete recommendations for daily operations. Particularly suitable for system administrators with Linux console experience.
check-icon

Guaranteed implementation:

from 2 Attendees

Booking information

Price:

2.390,00 € plus VAT.

(including lunch & drinks)

Authorized training partner

NetApp Partner Authorized Learning
Commvault Training Partner
CQI | IRCA Approved Training Partner
Veeam Authorized Education Center
Acronis Authorized Training Center
AWS Partner Select Tier Training
ISACA Accredited Partner
iSAQB
CompTIA Authorized Partner
EC-Council Accredited Training Center

Memberships

Allianz für Cyber-Sicherheit
TeleTrust Pioneers in IT security
Bundesverband der IT-Sachverständigen und Gutachter e.V.
Bundesverband mittelständische Wirtschaft (BVMW)
Allianz für Sicherheit in der Wirtschaft
NIK - Netzwerk der Digitalwirtschaft
BVSW
Bayern Innovativ
KH-iT
CAST
IHK Nürnberg für Mittelfranken
eato e.V.
Sicherheitsnetzwerk München e.V.