{"type":"log","@timestamp":"2019-06-12T14:31:12Z","tags":["plugins","debug"],"pid":21299,"dir":"/usr/share/kibana/plugins","message":"Scanning `/usr/share/kibana/plugins` for plugins"} {"type":"log","@timestamp":"2019-06-12T14:31:12Z","tags":["plugins","debug"],"pid":21299,"dir":"/usr/share/kibana/src/core_plugins","message":"Scanning `/usr/share/kibana/src/core_plugins` for plugins"} {"type":"log","@timestamp":"2019-06-12T14:31:13Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/plugins/searchguard/index.js","message":"Found plugin at /usr/share/kibana/plugins/searchguard/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:18Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/plugins/sentinl/index.js","message":"Found plugin at /usr/share/kibana/plugins/sentinl/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:18Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/console/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/console/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:18Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/elasticsearch/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/elasticsearch/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:18Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/kbn_doc_views/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kbn_doc_views/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:19Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/kbn_vislib_vis_types/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kbn_vislib_vis_types/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:19Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/kibana/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kibana/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:19Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/markdown_vis/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/markdown_vis/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:20Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/metrics/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/metrics/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:20Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/region_map/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/region_map/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:21Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/spy_modes/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/spy_modes/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:21Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/state_session_storage_redirect/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/state_session_storage_redirect/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:21Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/status_page/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/status_page/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:22Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/table_vis/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/table_vis/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:22Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/tagcloud/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/tagcloud/index.js"} {"type":"log","@timestamp":"2019-06-12T14:31:22Z","tags":["plugins","debug"],"pid":21299,"path":"/usr/share/kibana/src/core_plugins/timelion/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/timelion/index.js"} {"type":"ops","@timestamp":"2019-06-12T14:31:25Z","tags":[],"pid":21299,"os":{"load":[2.19873046875,0.60205078125,0.5166015625],"mem":{"total":3973750784,"free":395649024},"uptime":72570},"proc":{"uptime":24.009,"mem":{"rss":139206656,"heapTotal":119398400,"heapUsed":79769584,"external":105715},"delay":2.8425790071487427},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 76.1MB uptime: 0:00:24 load: [2.20 0.60 0.52] delay: 2.843"} {"type":"log","@timestamp":"2019-06-12T14:31:25Z","tags":["debug","optimize"],"pid":21299,"message":"All bundles are cached and ready to go!"} {"type":"log","@timestamp":"2019-06-12T14:31:25Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"kibana","version":"kibana"},"message":"Initializing plugin kibana@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:25Z","tags":["status","plugin:kibana@5.6.10","info"],"pid":21299,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:25Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"elasticsearch","version":"kibana"},"message":"Initializing plugin elasticsearch@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:26Z","tags":["status","plugin:elasticsearch@5.6.10","info"],"pid":21299,"state":"yellow","message":"Status changed from uninitialized to yellow - Waiting for Elasticsearch","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:26Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"searchguard","version":"5.6.10","description":"Search Guard features for kibana","main":"index.js","homepage":"https://floragunn.com","license":"Apache-2.0","repository":{"type":"git","url":"https://github.com/floragunncom/search-guard-kibana-plugin"},"dependencies":{"boom":"^3.2.2","hapi":"^16.0.1","hapi-async-handler":"^1.0.3","hapi-auth-cookie":"^3.1.0","hapi-authorization":"^3.0.2","joi":"^6.6.1","requirefrom":"^0.2.0"}},"message":"Initializing plugin searchguard@5.6.10"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":21299,"state":"yellow","message":"Status changed from uninitialized to yellow - Search Guard HTTP Basic Authentication is disabled.","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":21299,"state":"yellow","message":"Status changed from yellow to yellow - Search Guard multitenancy disabled","prevState":"yellow","prevMsg":"Search Guard HTTP Basic Authentication is disabled."} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":21299,"state":"yellow","message":"Status changed from yellow to yellow - Search Guard copy JWT params disabled","prevState":"yellow","prevMsg":"Search Guard multitenancy disabled"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":21299,"state":"green","message":"Status changed from yellow to green - Search Guard plugin initialised.","prevState":"yellow","prevMsg":"Search Guard copy JWT params disabled"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["server","uuid","uuid"],"pid":21299,"message":"Resuming persistent Kibana instance UUID: 0f248800-6b25-4897-8272-db389602a214"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["plugins","debug"],"pid":21299,"plugin":{"author":"Lorenzo Mangani ","repository":{"type":"git","url":"http://github.com/sirensolutions/sentinl.git"},"name":"sentinl","version":"10.1.0-SNAPSHOT","kibana":{"version":"5.6.10"},"description":"Kibana Alert & Report App for Elasticsearch","main":"index.js","scripts":{"test":"gulp test","testdev":"gulp testdev","testserver":"gulp testserver","test:coverage":"gulp coverage","precommit":"gulp lint","sentinl-install":"/opt/kibana/bin/kibi plugin --install sentinl -u file://`pwd`/sentinl-latest.tar.gz","sentinl-remove":"/opt/kibana/bin/kibi plugin --remove sentinl","package":"gulp package","archive":"tar cfz ./sentinl-latest.tar.gz --exclude .git --exclude .gitignore --exclude .github --exclude gradle --exclude build --exclude target --exclude sentinl-latest.tar.gz ./* && ls -alF sentinl-latest*"},"dependencies":{"@elastic/datemath":"2.3.0","@elastic/eui":"4.3.0","@slack/client":"4.4.0","angular":"1.4.8","angular-chart.js":"1.1.1","angular-touch":"1.4.8","angular-ui-bootstrap":"2.5.6","anomaly-finder":"1.0.1","bluebird":"3.4.7","boom":"7.1.1","bootstrap":"3.3.7","chart.js":"2.7.2","decompress":"4.2.0","elasql":"1.0.3","elasticsearch":"13.2.0","emailjs":"1.0.8","font-awesome":"4.7.0","later":"1.2.0","moment":"2.22.1","moment-timezone":"0.5.16","mustache":"2.3.0","ngreact":"0.5.1","node-horseman":"3.3.0","phantom":"6.0.3","puppeteer":"1.5.0","react":"16.5.2","react-dom":"^16.5.2","rison":"0.1.1","sanitize-html":"1.18.2","sum-time":"1.0.0","url-join":"4.0.0","uuid":"3.1.0"},"devDependencies":{"babel-eslint":"6.1.2","babel-plugin-angularjs-annotate":"0.8.2","eslint":"3.14.1","eslint-plugin-mocha":"4.8.0","expect.js":"0.3.1","gulp":"3.9.1","gulp-eslint":"1.1.1","gulp-util":"3.0.8","gulp-zip":"3.1.0","husky":"0.10.2","lodash":"4.17.10","minimist":"1.2.0","mkdirp":"0.5.1","node-debug":"0.1.0","rimraf":"2.5.4","rsync":"0.4.0","sinon":"1.17.2"},"license":"Apache-2.0"},"message":"Initializing plugin sentinl@10.1.0-SNAPSHOT"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["error","elasticsearch","admin"],"pid":21299,"message":"Request error, retrying\nHEAD http://localhost:9200/ => connect ECONNREFUSED 127.0.0.1:9200"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:sentinl@10.1.0-SNAPSHOT","info"],"pid":21299,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["plugins","debug"],"pid":21299,"plugin":{"author":"Boaz Leskes ","contributors":["Spencer Alger "],"name":"console","version":"kibana"},"message":"Initializing plugin console@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"Unable to revive connection: http://localhost:9200/"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"No living connections"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"kbn_doc_views","version":"kibana"},"message":"Initializing plugin kbn_doc_views@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["status","plugin:elasticsearch@5.6.10","error"],"pid":21299,"state":"red","message":"Status changed from yellow to red - Unable to connect to Elasticsearch at http://localhost:9200.","prevState":"yellow","prevMsg":"Waiting for Elasticsearch"} {"type":"log","@timestamp":"2019-06-12T14:31:29Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"kbn_vislib_vis_types","version":"kibana"},"message":"Initializing plugin kbn_vislib_vis_types@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"markdown_vis","version":"kibana"},"message":"Initializing plugin markdown_vis@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"author":"Chris Cowan","name":"metrics","version":"kibana"},"message":"Initializing plugin metrics@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["status","plugin:metrics@5.6.10","info"],"pid":21299,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"region_map","version":"kibana"},"message":"Initializing plugin region_map@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"spy_modes","version":"kibana"},"message":"Initializing plugin spy_modes@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"state_session_storage_redirect","version":"kibana","description":"When using the state:storeInSessionStorage setting with the short-urls, we need some way to get the full URL's hashed states into sessionStorage, this app will grab the URL from the kbn-initial-state and and put the URL hashed states into sessionStorage before redirecting the user."},"message":"Initializing plugin state_session_storage_redirect@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"status_page","version":"kibana"},"message":"Initializing plugin status_page@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"table_vis","version":"kibana"},"message":"Initializing plugin table_vis@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"name":"tagcloud","version":"kibana"},"message":"Initializing plugin tagcloud@kibana"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["plugins","debug"],"pid":21299,"plugin":{"author":"Rashid Khan ","name":"timelion","version":"kibana"},"message":"Initializing plugin timelion@kibana"} {"type":"ops","@timestamp":"2019-06-12T14:31:30Z","tags":[],"pid":21299,"os":{"load":[2.4228515625,0.67529296875,0.54052734375],"mem":{"total":3973750784,"free":439447552},"uptime":72575},"proc":{"uptime":29.377,"mem":{"rss":157544448,"heapTotal":135127040,"heapUsed":108123832,"external":628672},"delay":0.5150260031223297},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 103.1MB uptime: 0:00:29 load: [2.42 0.68 0.54] delay: 0.515"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["status","plugin:timelion@5.6.10","info"],"pid":21299,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["listening","info"],"pid":21299,"message":"Server running at http://172.20.1.105:5601"} {"type":"log","@timestamp":"2019-06-12T14:31:30Z","tags":["status","ui settings","error"],"pid":21299,"state":"red","message":"Status changed from uninitialized to red - Elasticsearch plugin is red","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:31:32Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"Unable to revive connection: http://localhost:9200/"} {"type":"log","@timestamp":"2019-06-12T14:31:32Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"No living connections"} {"type":"log","@timestamp":"2019-06-12T14:31:35Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"Unable to revive connection: http://localhost:9200/"} {"type":"log","@timestamp":"2019-06-12T14:31:35Z","tags":["warning","elasticsearch","admin"],"pid":21299,"message":"No living connections"} {"type":"ops","@timestamp":"2019-06-12T14:31:35Z","tags":[],"pid":21299,"os":{"load":[2.22900390625,0.6640625,0.53759765625],"mem":{"total":3973750784,"free":420597760},"uptime":72580},"proc":{"uptime":34.379,"mem":{"rss":159735808,"heapTotal":137224192,"heapUsed":95736208,"external":111539},"delay":0.39283598959445953},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 91.3MB uptime: 0:00:34 load: [2.23 0.66 0.54] delay: 0.393"} {"type":"log","@timestamp":"2019-06-12T14:31:38Z","tags":["status","plugin:elasticsearch@5.6.10","error"],"pid":21299,"state":"red","message":"Status changed from red to red - Service Unavailable","prevState":"red","prevMsg":"Unable to connect to Elasticsearch at http://localhost:9200."} {"type":"ops","@timestamp":"2019-06-12T14:31:40Z","tags":[],"pid":21299,"os":{"load":[3.01123046875,0.85205078125,0.59912109375],"mem":{"total":3973750784,"free":345169920},"uptime":72585},"proc":{"uptime":39.384,"mem":{"rss":160014336,"heapTotal":137224192,"heapUsed":96244272,"external":193655},"delay":0.31577999889850616},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 91.8MB uptime: 0:00:39 load: [3.01 0.85 0.60] delay: 0.316"} {"type":"log","@timestamp":"2019-06-12T14:31:43Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:31:44Z","tags":["status","plugin:elasticsearch@5.6.10","info"],"pid":21299,"state":"green","message":"Status changed from red to green - Kibana index ready","prevState":"red","prevMsg":"Service Unavailable"} {"type":"log","@timestamp":"2019-06-12T14:31:44Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:44Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["info","Sentinl","init"],"pid":21299,"message":"initializing ..."} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["info","Sentinl","init"],"pid":21299,"message":"Chrome bin found at: /usr/share/kibana/plugins/sentinl/node_modules/puppeteer/.local-chromium/linux-564778/chrome-linux/chrome"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["info","Sentinl","init_indices"],"pid":21299,"message":"checking .kibana index ..."} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["status","ui settings","info"],"pid":21299,"state":"green","message":"Status changed from red to green - Ready","prevState":"red","prevMsg":"Elasticsearch plugin is red"} {"type":"log","@timestamp":"2019-06-12T14:31:45Z","tags":["info","Sentinl","init"],"pid":21299,"message":"PhantomJS bin found at: /usr/share/kibana/plugins/sentinl/phantomjs/phantomjs-2.1.1-linux-x86_64/bin/phantomjs"} {"type":"ops","@timestamp":"2019-06-12T14:31:45Z","tags":[],"pid":21299,"os":{"load":[3.41064453125,0.970703125,0.638671875],"mem":{"total":3973750784,"free":297615360},"uptime":72590},"proc":{"uptime":44.388,"mem":{"rss":162988032,"heapTotal":140369920,"heapUsed":107680160,"external":650793},"delay":0.3144799917936325},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 102.7MB uptime: 0:00:44 load: [3.41 0.97 0.64] delay: 0.314"} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","init_indices"],"pid":21299,"message":"index .kibana exists"} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","init"],"pid":21299,"message":"create index .kibana: null"} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["info","Sentinl","init_indices"],"pid":21299,"message":"checking watcher_alarms-2019.06.12 index ..."} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","init_indices"],"pid":21299,"message":"index watcher_alarms-2019.06.12 exists"} {"type":"log","@timestamp":"2019-06-12T14:31:47Z","tags":["debug","Sentinl","init"],"pid":21299,"message":"create index watcher_alarms: null"} {"type":"log","@timestamp":"2019-06-12T14:31:48Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:31:50Z","tags":[],"pid":21299,"os":{"load":[3.6982421875,1.07080078125,0.6728515625],"mem":{"total":3973750784,"free":252108800},"uptime":72595},"proc":{"uptime":49.4,"mem":{"rss":163217408,"heapTotal":140369920,"heapUsed":109013288,"external":746052},"delay":0.28860700130462646},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 104.0MB uptime: 0:00:49 load: [3.70 1.07 0.67] delay: 0.289"} {"type":"log","@timestamp":"2019-06-12T14:31:51Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:31:54Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"cluster disabled"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"reloading watchers..."} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:31:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"no watchers found"} {"type":"ops","@timestamp":"2019-06-12T14:31:55Z","tags":[],"pid":21299,"os":{"load":[3.96240234375,1.16943359375,0.70703125],"mem":{"total":3973750784,"free":230260736},"uptime":72600},"proc":{"uptime":54.402,"mem":{"rss":163753984,"heapTotal":140369920,"heapUsed":111304112,"external":838136},"delay":0.3050049990415573},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 106.1MB uptime: 0:00:54 load: [3.96 1.17 0.71] delay: 0.305"} {"type":"log","@timestamp":"2019-06-12T14:31:57Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:00Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:01Z","tags":[],"pid":21299,"os":{"load":[4.20556640625,1.26611328125,0.74072265625],"mem":{"total":3973750784,"free":293928960},"uptime":72605},"proc":{"uptime":59.41,"mem":{"rss":163921920,"heapTotal":141418496,"heapUsed":112262512,"external":925319},"delay":0.2753549963235855},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 107.1MB uptime: 0:00:59 load: [4.21 1.27 0.74] delay: 0.275"} {"type":"log","@timestamp":"2019-06-12T14:32:03Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:06Z","tags":[],"pid":21299,"os":{"load":[4.26904296875,1.328125,0.763671875],"mem":{"total":3973750784,"free":240009216},"uptime":72610},"proc":{"uptime":64.413,"mem":{"rss":164188160,"heapTotal":141418496,"heapUsed":113490776,"external":1016890},"delay":0.3094640076160431},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 108.2MB uptime: 0:01:04 load: [4.27 1.33 0.76] delay: 0.309"} {"type":"log","@timestamp":"2019-06-12T14:32:06Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:09Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:11Z","tags":[],"pid":21299,"os":{"load":[4.56787109375,1.43896484375,0.802734375],"mem":{"total":3973750784,"free":335704064},"uptime":72615},"proc":{"uptime":69.42,"mem":{"rss":164458496,"heapTotal":141418496,"heapUsed":114849832,"external":1116944},"delay":0.2968759983778},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 109.5MB uptime: 0:01:09 load: [4.57 1.44 0.80] delay: 0.297"} {"type":"log","@timestamp":"2019-06-12T14:32:12Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:15Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:16Z","tags":[],"pid":21299,"os":{"load":[4.8427734375,1.5478515625,0.84130859375],"mem":{"total":3973750784,"free":301023232},"uptime":72620},"proc":{"uptime":74.431,"mem":{"rss":135233536,"heapTotal":112058368,"heapUsed":101928648,"external":129673},"delay":0.3116679936647415},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 97.2MB uptime: 0:01:14 load: [4.84 1.55 0.84] delay: 0.312"} {"type":"log","@timestamp":"2019-06-12T14:32:18Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:20Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:21Z","tags":[],"pid":21299,"os":{"load":[4.935546875,1.62158203125,0.869140625],"mem":{"total":3973750784,"free":249307136},"uptime":72625},"proc":{"uptime":79.44,"mem":{"rss":135499776,"heapTotal":113106944,"heapUsed":103055688,"external":220906},"delay":0.30273500084877014},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.3MB uptime: 0:01:19 load: [4.94 1.62 0.87] delay: 0.303"} {"type":"log","@timestamp":"2019-06-12T14:32:24Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"cluster disabled"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"reloading watchers..."} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"ops","@timestamp":"2019-06-12T14:32:26Z","tags":[],"pid":21299,"os":{"load":[5.10107421875,1.7109375,0.90185546875],"mem":{"total":3973750784,"free":315006976},"uptime":72630},"proc":{"uptime":84.457,"mem":{"rss":134234112,"heapTotal":113106944,"heapUsed":102086176,"external":119731},"delay":0.27235299348831177},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 97.4MB uptime: 0:01:24 load: [5.10 1.71 0.90] delay: 0.272"} {"type":"log","@timestamp":"2019-06-12T14:32:26Z","tags":["error","Sentinl","scheduler"],"pid":21299,"message":"fail to schedule watchers: list watchers : find : [security_exception] no permissions for [indices:data/read/search] and User [name=sentinl, roles=[sentinl]]"} {"type":"log","@timestamp":"2019-06-12T14:32:27Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:29Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:31Z","tags":[],"pid":21299,"os":{"load":[5.1728515625,1.7822265625,0.92919921875],"mem":{"total":3973750784,"free":273862656},"uptime":72635},"proc":{"uptime":89.459,"mem":{"rss":136679424,"heapTotal":113106944,"heapUsed":102944568,"external":124410},"delay":0.28055499494075775},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.2MB uptime: 0:01:29 load: [5.17 1.78 0.93] delay: 0.281"} {"type":"log","@timestamp":"2019-06-12T14:32:33Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:36Z","tags":[],"pid":21299,"os":{"load":[5.1591796875,1.83544921875,0.951171875],"mem":{"total":3973750784,"free":315916288},"uptime":72640},"proc":{"uptime":94.467,"mem":{"rss":136445952,"heapTotal":113106944,"heapUsed":102731528,"external":127923},"delay":0.2937760055065155},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.0MB uptime: 0:01:34 load: [5.16 1.84 0.95] delay: 0.294"} {"type":"log","@timestamp":"2019-06-12T14:32:36Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:38Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:41Z","tags":[],"pid":21299,"os":{"load":[5.2265625,1.90478515625,0.978515625],"mem":{"total":3973750784,"free":271142912},"uptime":72645},"proc":{"uptime":99.48,"mem":{"rss":136675328,"heapTotal":113106944,"heapUsed":103083072,"external":128163},"delay":0.2661460041999817},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.3MB uptime: 0:01:39 load: [5.23 1.90 0.98] delay: 0.266"} {"type":"log","@timestamp":"2019-06-12T14:32:41Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:44Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:41Z","tags":[],"pid":21299,"os":{"load":[5.2265625,1.90478515625,0.978515625],"mem":{"total":3973750784,"free":271142912},"uptime":72645},"proc":{"uptime":99.48,"mem":{"rss":136675328,"heapTotal":113106944,"heapUsed":103083072,"external":128163},"delay":0.2661460041999817},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.3MB uptime: 0:01:39 load: [5.23 1.90 0.98] delay: 0.266"} {"type":"log","@timestamp":"2019-06-12T14:32:41Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:44Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:46Z","tags":[],"pid":21299,"os":{"load":[5.44873046875,2.005859375,1.01611328125],"mem":{"total":3973750784,"free":330846208},"uptime":72650},"proc":{"uptime":104.489,"mem":{"rss":137134080,"heapTotal":113106944,"heapUsed":103383952,"external":131800},"delay":0.2596199959516525},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.6MB uptime: 0:01:44 load: [5.45 2.01 1.02] delay: 0.260"} {"type":"log","@timestamp":"2019-06-12T14:32:47Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:49Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:32:51Z","tags":[],"pid":21299,"os":{"load":[5.01220703125,1.97265625,1.0107421875],"mem":{"total":3973750784,"free":263114752},"uptime":72655},"proc":{"uptime":109.49,"mem":{"rss":137367552,"heapTotal":114155520,"heapUsed":103730520,"external":132602},"delay":0.270224004983902},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 98.9MB uptime: 0:01:49 load: [5.01 1.97 1.01] delay: 0.270"} {"type":"log","@timestamp":"2019-06-12T14:32:52Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"cluster disabled"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"reloading watchers..."} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":21299,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["debug","Sentinl","scheduler"],"pid":21299,"message":"no watchers found"} {"type":"log","@timestamp":"2019-06-12T14:32:55Z","tags":["plugin","debug"],"pid":21299,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:24Z","tags":["plugins","debug"],"pid":22114,"dir":"/usr/share/kibana/plugins","message":"Scanning `/usr/share/kibana/plugins` for plugins"} {"type":"log","@timestamp":"2019-06-12T14:38:24Z","tags":["plugins","debug"],"pid":22114,"dir":"/usr/share/kibana/src/core_plugins","message":"Scanning `/usr/share/kibana/src/core_plugins` for plugins"} {"type":"log","@timestamp":"2019-06-12T14:38:24Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/plugins/searchguard/index.js","message":"Found plugin at /usr/share/kibana/plugins/searchguard/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/plugins/sentinl/index.js","message":"Found plugin at /usr/share/kibana/plugins/sentinl/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/console/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/console/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/elasticsearch/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/elasticsearch/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/kbn_doc_views/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kbn_doc_views/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/kbn_vislib_vis_types/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kbn_vislib_vis_types/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:27Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/kibana/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/kibana/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/markdown_vis/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/markdown_vis/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/metrics/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/metrics/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/region_map/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/region_map/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/spy_modes/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/spy_modes/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/state_session_storage_redirect/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/state_session_storage_redirect/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/status_page/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/status_page/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:28Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/table_vis/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/table_vis/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:29Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/tagcloud/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/tagcloud/index.js"} {"type":"log","@timestamp":"2019-06-12T14:38:29Z","tags":["plugins","debug"],"pid":22114,"path":"/usr/share/kibana/src/core_plugins/timelion/index.js","message":"Found plugin at /usr/share/kibana/src/core_plugins/timelion/index.js"} {"type":"ops","@timestamp":"2019-06-12T14:38:30Z","tags":[],"pid":22114,"os":{"load":[4.3330078125,2.2255859375,1.28173828125],"mem":{"total":3973750784,"free":366964736},"uptime":72994},"proc":{"uptime":11.606,"mem":{"rss":151982080,"heapTotal":133914624,"heapUsed":104942712,"external":1625025},"delay":2.5644560009241104},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 100.1MB uptime: 0:00:12 load: [4.33 2.23 1.28] delay: 2.564"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["debug","optimize"],"pid":22114,"message":"All bundles are cached and ready to go!"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"kibana","version":"kibana"},"message":"Initializing plugin kibana@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["status","plugin:kibana@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"elasticsearch","version":"kibana"},"message":"Initializing plugin elasticsearch@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["status","plugin:elasticsearch@5.6.10","info"],"pid":22114,"state":"yellow","message":"Status changed from uninitialized to yellow - Waiting for Elasticsearch","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:30Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"searchguard","version":"5.6.10","description":"Search Guard features for kibana","main":"index.js","homepage":"https://floragunn.com","license":"Apache-2.0","repository":{"type":"git","url":"https://github.com/floragunncom/search-guard-kibana-plugin"},"dependencies":{"boom":"^3.2.2","hapi":"^16.0.1","hapi-async-handler":"^1.0.3","hapi-auth-cookie":"^3.1.0","hapi-authorization":"^3.0.2","joi":"^6.6.1","requirefrom":"^0.2.0"}},"message":"Initializing plugin searchguard@5.6.10"} {"type":"log","@timestamp":"2019-06-12T14:38:31Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":22114,"state":"yellow","message":"Status changed from uninitialized to yellow - Search Guard HTTP Basic Authentication is disabled.","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:31Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":22114,"state":"yellow","message":"Status changed from yellow to yellow - Search Guard multitenancy disabled","prevState":"yellow","prevMsg":"Search Guard HTTP Basic Authentication is disabled."} {"type":"log","@timestamp":"2019-06-12T14:38:31Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":22114,"state":"yellow","message":"Status changed from yellow to yellow - Search Guard copy JWT params disabled","prevState":"yellow","prevMsg":"Search Guard multitenancy disabled"} {"type":"log","@timestamp":"2019-06-12T14:38:31Z","tags":["status","plugin:searchguard@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from yellow to green - Search Guard plugin initialised.","prevState":"yellow","prevMsg":"Search Guard copy JWT params disabled"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"author":"Lorenzo Mangani ","repository":{"type":"git","url":"http://github.com/sirensolutions/sentinl.git"},"name":"sentinl","version":"10.1.0-SNAPSHOT","kibana":{"version":"5.6.10"},"description":"Kibana Alert & Report App for Elasticsearch","main":"index.js","scripts":{"test":"gulp test","testdev":"gulp testdev","testserver":"gulp testserver","test:coverage":"gulp coverage","precommit":"gulp lint","sentinl-install":"/opt/kibana/bin/kibi plugin --install sentinl -u file://`pwd`/sentinl-latest.tar.gz","sentinl-remove":"/opt/kibana/bin/kibi plugin --remove sentinl","package":"gulp package","archive":"tar cfz ./sentinl-latest.tar.gz --exclude .git --exclude .gitignore --exclude .github --exclude gradle --exclude build --exclude target --exclude sentinl-latest.tar.gz ./* && ls -alF sentinl-latest*"},"dependencies":{"@elastic/datemath":"2.3.0","@elastic/eui":"4.3.0","@slack/client":"4.4.0","angular":"1.4.8","angular-chart.js":"1.1.1","angular-touch":"1.4.8","angular-ui-bootstrap":"2.5.6","anomaly-finder":"1.0.1","bluebird":"3.4.7","boom":"7.1.1","bootstrap":"3.3.7","chart.js":"2.7.2","decompress":"4.2.0","elasql":"1.0.3","elasticsearch":"13.2.0","emailjs":"1.0.8","font-awesome":"4.7.0","later":"1.2.0","moment":"2.22.1","moment-timezone":"0.5.16","mustache":"2.3.0","ngreact":"0.5.1","node-horseman":"3.3.0","phantom":"6.0.3","puppeteer":"1.5.0","react":"16.5.2","react-dom":"^16.5.2","rison":"0.1.1","sanitize-html":"1.18.2","sum-time":"1.0.0","url-join":"4.0.0","uuid":"3.1.0"},"devDependencies":{"babel-eslint":"6.1.2","babel-plugin-angularjs-annotate":"0.8.2","eslint":"3.14.1","eslint-plugin-mocha":"4.8.0","expect.js":"0.3.1","gulp":"3.9.1","gulp-eslint":"1.1.1","gulp-util":"3.0.8","gulp-zip":"3.1.0","husky":"0.10.2","lodash":"4.17.10","minimist":"1.2.0","mkdirp":"0.5.1","node-debug":"0.1.0","rimraf":"2.5.4","rsync":"0.4.0","sinon":"1.17.2"},"license":"Apache-2.0"},"message":"Initializing plugin sentinl@10.1.0-SNAPSHOT"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["server","uuid","uuid"],"pid":22114,"message":"Resuming persistent Kibana instance UUID: 0f248800-6b25-4897-8272-db389602a214"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","plugin:sentinl@10.1.0-SNAPSHOT","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"author":"Boaz Leskes ","contributors":["Spencer Alger "],"name":"console","version":"kibana"},"message":"Initializing plugin console@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","plugin:console@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"kbn_doc_views","version":"kibana"},"message":"Initializing plugin kbn_doc_views@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"kbn_vislib_vis_types","version":"kibana"},"message":"Initializing plugin kbn_vislib_vis_types@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"markdown_vis","version":"kibana"},"message":"Initializing plugin markdown_vis@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"author":"Chris Cowan","name":"metrics","version":"kibana"},"message":"Initializing plugin metrics@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","plugin:metrics@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"region_map","version":"kibana"},"message":"Initializing plugin region_map@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"spy_modes","version":"kibana"},"message":"Initializing plugin spy_modes@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"author":"Chris Cowan","name":"metrics","version":"kibana"},"message":"Initializing plugin metrics@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","plugin:metrics@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"region_map","version":"kibana"},"message":"Initializing plugin region_map@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"spy_modes","version":"kibana"},"message":"Initializing plugin spy_modes@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"state_session_storage_redirect","version":"kibana","description":"When using the state:storeInSessionStorage setting with the short-urls, we need some way to get the full URL's hashed states into sessionStorage, this app will grab the URL from the kbn-initial-state and and put the URL hashed states into sessionStorage before redirecting the user."},"message":"Initializing plugin state_session_storage_redirect@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"status_page","version":"kibana"},"message":"Initializing plugin status_page@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"table_vis","version":"kibana"},"message":"Initializing plugin table_vis@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"name":"tagcloud","version":"kibana"},"message":"Initializing plugin tagcloud@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["plugins","debug"],"pid":22114,"plugin":{"author":"Rashid Khan ","name":"timelion","version":"kibana"},"message":"Initializing plugin timelion@kibana"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","plugin:timelion@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from uninitialized to green - Ready","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["listening","info"],"pid":22114,"message":"Server running at http://172.20.1.105:5601"} {"type":"log","@timestamp":"2019-06-12T14:38:32Z","tags":["status","ui settings","info"],"pid":22114,"state":"yellow","message":"Status changed from uninitialized to yellow - Elasticsearch plugin is yellow","prevState":"uninitialized","prevMsg":"uninitialized"} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["status","plugin:elasticsearch@5.6.10","info"],"pid":22114,"state":"green","message":"Status changed from yellow to green - Kibana index ready","prevState":"yellow","prevMsg":"Waiting for Elasticsearch"} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["info","Sentinl","init"],"pid":22114,"message":"initializing ..."} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["info","Sentinl","init"],"pid":22114,"message":"Chrome bin found at: /usr/share/kibana/plugins/sentinl/node_modules/puppeteer/.local-chromium/linux-564778/chrome-linux/chrome"} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:33Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["info","Sentinl","init_indices"],"pid":22114,"message":"checking .kibana index ..."} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} "type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["info","Sentinl","init"],"pid":22114,"message":"PhantomJS bin found at: /usr/share/kibana/plugins/sentinl/phantomjs/phantomjs-2.1.1-linux-x86_64/bin/phantomjs"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","init_indices"],"pid":22114,"message":"index .kibana exists"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","init"],"pid":22114,"message":"create index .kibana: null"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["info","Sentinl","init_indices"],"pid":22114,"message":"checking watcher_alarms-2019.06.12 index ..."} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","init_indices"],"pid":22114,"message":"index watcher_alarms-2019.06.12 exists"} {"type":"log","@timestamp":"2019-06-12T14:38:34Z","tags":["debug","Sentinl","init"],"pid":22114,"message":"create index watcher_alarms: null"} {"type":"ops","@timestamp":"2019-06-12T14:38:35Z","tags":[],"pid":22114,"os":{"load":[4.38623046875,2.271484375,1.3017578125],"mem":{"total":3973750784,"free":359149568},"uptime":72999},"proc":{"uptime":16.609,"mem":{"rss":174796800,"heapTotal":154886144,"heapUsed":118085784,"external":119906},"delay":0.5614629983901978},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 112.6MB uptime: 0:00:17 load: [4.39 2.27 1.30] delay: 0.561"} {"type":"log","@timestamp":"2019-06-12T14:38:36Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:39Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:38:40Z","tags":[],"pid":22114,"os":{"load":[4.03515625,2.23388671875,1.294921875],"mem":{"total":3973750784,"free":355766272},"uptime":73004},"proc":{"uptime":21.61,"mem":{"rss":175063040,"heapTotal":154886144,"heapUsed":119577600,"external":211769},"delay":1.2293450087308884},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 114.0MB uptime: 0:00:22 load: [4.04 2.23 1.29] delay: 1.229"} {"type":"log","@timestamp":"2019-06-12T14:38:42Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:44Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:38:45Z","tags":[],"pid":22114,"os":{"load":[3.7919921875,2.21337890625,1.29345703125],"mem":{"total":3973750784,"free":355004416},"uptime":73009},"proc":{"uptime":26.611,"mem":{"rss":175493120,"heapTotal":155934720,"heapUsed":121074192,"external":303631},"delay":0.28248000144958496},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 115.5MB uptime: 0:00:27 load: [3.79 2.21 1.29] delay: 0.282"} {"type":"log","@timestamp":"2019-06-12T14:38:47Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:38:50Z","tags":[],"pid":22114,"os":{"load":[4.048828125,2.29296875,1.32421875],"mem":{"total":3973750784,"free":202547200},"uptime":73014},"proc":{"uptime":31.612,"mem":{"rss":175493120,"heapTotal":155934720,"heapUsed":121850136,"external":390522},"delay":0.2917089909315109},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 116.2MB uptime: 0:00:32 load: [4.05 2.29 1.32] delay: 0.292"} {"type":"log","@timestamp":"2019-06-12T14:38:50Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:53Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:38:55Z","tags":[],"pid":22114,"os":{"load":[3.724609375,2.2548828125,1.31689453125],"mem":{"total":3973750784,"free":353521664},"uptime":73019},"proc":{"uptime":36.615,"mem":{"rss":175763456,"heapTotal":155934720,"heapUsed":123251112,"external":490577},"delay":1.3208069950342178},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 117.5MB uptime: 0:00:37 load: [3.72 2.25 1.32] delay: 1.321"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","scheduler"],"pid":22114,"message":"cluster disabled"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","scheduler"],"pid":22114,"message":"reloading watchers..."} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:38:55Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:38:56Z","tags":["debug","Sentinl","scheduler"],"pid":22114,"message":"no watchers found"} {"type":"log","@timestamp":"2019-06-12T14:38:58Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:39:00Z","tags":[],"pid":22114,"os":{"load":[3.42626953125,2.21728515625,1.31005859375],"mem":{"total":3973750784,"free":353013760},"uptime":73024},"proc":{"uptime":41.616,"mem":{"rss":176304128,"heapTotal":155934720,"heapUsed":125414152,"external":582662},"delay":1.2351150065660477},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 119.6MB uptime: 0:00:42 load: [3.43 2.22 1.31] delay: 1.235"} {"type":"log","@timestamp":"2019-06-12T14:39:01Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:39:03Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:39:05Z","tags":[],"pid":22114,"os":{"load":[3.15185546875,2.1806640625,1.30322265625],"mem":{"total":3973750784,"free":352481280},"uptime":73029},"proc":{"uptime":46.619,"mem":{"rss":176574464,"heapTotal":156983296,"heapUsed":126672632,"external":674524},"delay":1.511145994067192},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 120.8MB uptime: 0:00:47 load: [3.15 2.18 1.30] delay: 1.511"} {"type":"log","@timestamp":"2019-06-12T14:39:06Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:39:09Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:39:10Z","tags":[],"pid":22114,"os":{"load":[2.8994140625,2.14453125,1.29638671875],"mem":{"total":3973750784,"free":351592448},"uptime":73034},"proc":{"uptime":51.624,"mem":{"rss":176574464,"heapTotal":156983296,"heapUsed":127960760,"external":766386},"delay":1.2199040055274963},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 122.0MB uptime: 0:00:52 load: [2.90 2.14 1.30] delay: 1.220"} {"type":"log","@timestamp":"2019-06-12T14:39:12Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:39:14Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"ops","@timestamp":"2019-06-12T14:39:15Z","tags":[],"pid":22114,"os":{"load":[2.6669921875,2.10888671875,1.28955078125],"mem":{"total":3973750784,"free":349941760},"uptime":73039},"proc":{"uptime":56.625,"mem":{"rss":177922048,"heapTotal":156983296,"heapUsed":129315888,"external":866440},"delay":1.0490659922361374},"load":{"requests":{},"concurrents":{"5601":0},"responseTimes":{},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 123.3MB uptime: 0:00:57 load: [2.67 2.11 1.29] delay: 1.049"} {"type":"log","@timestamp":"2019-06-12T14:39:17Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:39:20Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"response","@timestamp":"2019-06-12T14:39:19Z","tags":[],"pid":22114,"method":"get","statusCode":200,"req":{"url":"/","method":"get","headers":{"host":"172.20.1.105:5601","connection":"keep-alive","upgrade-insecure-requests":"1","user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36","accept":"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3","accept-encoding":"gzip, deflate","accept-language":"en-US,en;q=0.9"},"remoteAddress":"172.20.1.14","userAgent":"172.20.1.14"},"res":{"statusCode":200,"responseTime":126,"contentLength":9},"message":"GET / 200 126ms - 9.0B"} {"type":"ops","@timestamp":"2019-06-12T14:39:20Z","tags":[],"pid":22114,"os":{"load":[2.69384765625,2.12353515625,1.298828125],"mem":{"total":3973750784,"free":346353664},"uptime":73044},"proc":{"uptime":61.633,"mem":{"rss":179814400,"heapTotal":158031872,"heapUsed":132900024,"external":974287},"delay":1.063643991947174},"load":{"requests":{"5601":{"total":1,"disconnects":0,"statusCodes":{"200":1}}},"concurrents":{"5601":1},"responseTimes":{"5601":{"avg":125,"max":125}},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 126.7MB uptime: 0:01:02 load: [2.69 2.12 1.30] delay: 1.064"} {"type":"response","@timestamp":"2019-06-12T14:39:21Z","tags":[],"pid":22114,"method":"get","statusCode":401,"req":{"url":"/app/kibana","method":"get","headers":{"host":"172.20.1.105:5601","connection":"keep-alive","upgrade-insecure-requests":"1","user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36","accept":"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3","referer":"http://172.20.1.105:5601/","accept-encoding":"gzip, deflate","accept-language":"en-US,en;q=0.9"},"remoteAddress":"172.20.1.14","userAgent":"172.20.1.14","referer":"http://172.20.1.105:5601/"},"res":{"statusCode":401,"responseTime":46,"contentLength":9},"message":"GET /app/kibana 401 46ms - 9.0B"} {"type":"log","@timestamp":"2019-06-12T14:39:22Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"response","@timestamp":"2019-06-12T14:39:23Z","tags":[],"pid":22114,"method":"get","statusCode":200,"req":{"url":"/app/kibana","method":"get","headers":{"host":"172.20.1.105:5601","connection":"keep-alive","upgrade-insecure-requests":"1","user-agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36","accept":"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3","referer":"http://172.20.1.105:5601/","accept-encoding":"gzip, deflate","accept-language":"en-US,en;q=0.9"},"remoteAddress":"172.20.1.14","userAgent":"172.20.1.14","referer":"http://172.20.1.105:5601/"},"res":{"statusCode":200,"responseTime":574,"contentLength":9},"message":"GET /app/kibana 200 574ms - 9.0B"} {"type":"ops","@timestamp":"2019-06-12T14:39:25Z","tags":[],"pid":22114,"os":{"load":[2.47802734375,2.08837890625,1.2919921875],"mem":{"total":3973750784,"free":375660544},"uptime":73049},"proc":{"uptime":66.634,"mem":{"rss":155074560,"heapTotal":132866048,"heapUsed":124699776,"external":177836},"delay":1.4565500020980835},"load":{"requests":{"5601":{"total":2,"disconnects":0,"statusCodes":{"200":1,"401":1}}},"concurrents":{"5601":1},"responseTimes":{"5601":{"avg":309.5,"max":574}},"sockets":{"http":{"total":0},"https":{"total":0}}},"message":"memory: 118.9MB uptime: 0:01:07 load: [2.48 2.09 1.29] delay: 1.457"} {"type":"log","@timestamp":"2019-06-12T14:39:25Z","tags":["plugin","debug"],"pid":22114,"message":"Checking Elasticsearch version"} {"type":"log","@timestamp":"2019-06-12T14:39:25Z","tags":["debug","Sentinl","scheduler"],"pid":22114,"message":"cluster disabled"} {"type":"log","@timestamp":"2019-06-12T14:39:25Z","tags":["debug","Sentinl","scheduler"],"pid":22114,"message":"reloading watchers..."} {"type":"log","@timestamp":"2019-06-12T14:39:25Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"es client options (password hidden): [\n {\n \"host\": \"localhost\",\n \"protocol\": \"http\",\n \"port\": 9200\n }\n]"} {"type":"log","@timestamp":"2019-06-12T14:39:26Z","tags":["debug","Sentinl","get_elasticsearch_client"],"pid":22114,"message":"impersonate Sentinl by common user from config: \"sentinl\""}