Elastic Observability Stack Training
Build a complete observability platform with this intensive 3-day training on the Elastic Stack. Learn to collect, process, and visualize logs, metrics, and traces using Elasticsearch, Kibana, Beats, Logstash, Elastic Agent, and APM at production scale.
Training Details
Section titled “Training Details”| Duration | 3 days (24 hours) |
| Level | Advanced |
| Delivery | In-person, Live online, Hybrid |
| Certification | N/A |
Who Is This For?
Section titled “Who Is This For?”- DevOps engineers building observability platforms
- SREs implementing centralized logging and monitoring
- Platform engineers standardizing observability tooling
- Operations teams migrating from legacy monitoring solutions
Learning Outcomes
Section titled “Learning Outcomes”After completing this training, you’ll be able to:
- Deploy and manage Elastic Agent with Fleet
- Build log pipelines with Filebeat and Logstash
- Collect infrastructure metrics with Metricbeat
- Implement distributed tracing with Elastic APM
- Create Kibana dashboards, alerts, and SLOs
- Design production observability architectures
Detailed Agenda
Section titled “Detailed Agenda”Day 1: Log Collection and Processing
Section titled “Day 1: Log Collection and Processing”Module 1: Elastic Agent and Fleet
- Elastic Agent architecture and Fleet Server
- Agent policies and integrations
- Fleet enrollment and management at scale
- Hands-on: Deploy Fleet Server and enroll agents
Module 2: Log Collection
- Filebeat modules for common log formats
- Custom log parsing with ingest pipelines
- Logstash pipelines — input, filter, output
- Grok patterns and dissect processors
- Hands-on: Build a multi-source log pipeline
Module 3: Log Analysis
- Logs UI in Kibana for live tail and search
- Log categorization and anomaly detection
- Index patterns and data views
- Hands-on: Analyze application logs and detect anomalies
Day 2: Metrics and Infrastructure Monitoring
Section titled “Day 2: Metrics and Infrastructure Monitoring”Module 4: Infrastructure Metrics
- Metricbeat modules — system, docker, kubernetes
- Infrastructure UI in Kibana
- Custom metric collection and ingest
- Hands-on: Monitor a Kubernetes cluster with Metricbeat
Module 5: Uptime and Synthetic Monitoring
- Heartbeat for endpoint monitoring
- Synthetic monitoring with browser checks
- SLO definitions and error budgets
- Hands-on: Set up uptime monitoring and define SLOs
Module 6: Kibana Dashboards and Visualization
- Dashboard design best practices
- Lens, TSVB, and Vega visualizations
- Canvas for presentation dashboards
- Hands-on: Build operational dashboards for infrastructure
Day 3: APM and Production Patterns
Section titled “Day 3: APM and Production Patterns”Module 7: Elastic APM
- APM architecture — agents, server, Elasticsearch
- Instrumenting applications (Java, Node.js, Python, Go, .NET)
- Distributed tracing and service maps
- Transaction and span analysis
- Hands-on: Instrument a microservices application
Module 8: Alerting and Incident Response
- Kibana alerting — rules, connectors, actions
- PagerDuty, Slack, and webhook integrations
- Alert deduplication and escalation
- Hands-on: Configure alerts for SLO breaches
Module 9: Production Architecture
- Sizing and capacity planning for observability
- Multi-cluster and cross-cluster architectures
- Data retention strategies with ILM and data tiers
- High availability and disaster recovery
- Hands-on: Design an observability architecture for a given scenario
What’s Included
Section titled “What’s Included”- Access to multi-node lab environments with full Elastic Stack
- Course slides and reference materials
- Dashboards, pipelines, and alert templates
- Post-training email support (30 days)
Request This Training
Section titled “Request This Training”Ready to bring Elastic Observability training to your team? Contact me to discuss dates, group size, and customization options.