1 00:00:01,800 --> 00:00:06,720 In this lecture I will explain about the school and board B caps script. 2 00:00:06,720 --> 00:00:12,630 So as we have seen when we use the TV replay comment that the timestamps of the events are delayed or 3 00:00:12,630 --> 00:00:13,630 aborted. 4 00:00:13,650 --> 00:00:20,280 Where are those of the date of executing the comet not the date when the recap files were originally 5 00:00:20,280 --> 00:00:20,850 created. 6 00:00:21,840 --> 00:00:28,110 So in order to preserve the original timestamps of these files we have to use desu and import pick up 7 00:00:28,110 --> 00:00:37,050 script but this script is included with the elastic stack so we have to agree to that from Elsa and 8 00:00:37,050 --> 00:00:40,030 we carry around the set up for that purpose. 9 00:00:40,050 --> 00:00:46,910 However in beta but longer way is to use the following comments. 10 00:00:46,980 --> 00:00:59,760 So first we have to use the sudo su comment to install updates and then install and configure elastic 11 00:01:00,120 --> 00:01:06,960 using the following comments. 12 00:01:06,990 --> 00:01:12,860 So now I have completed the upgrade process and here we see that Cuban I was installed. 13 00:01:12,930 --> 00:01:19,470 However the elastic stack demands in memory of 8 gigabytes at least so I have increased the memory to 14 00:01:19,470 --> 00:01:22,810 this value while the VM is bought off. 15 00:01:23,010 --> 00:01:30,600 In addition you might still get into memory issues so that log stash will fail to start. 16 00:01:30,600 --> 00:01:39,030 So let us open a terminal window and check for that using your command sudo su 17 00:01:42,090 --> 00:01:44,700 elastic status 18 00:01:49,990 --> 00:01:54,220 and we see that log stash failed to start. 19 00:01:54,640 --> 00:02:03,250 And in order to solve this issue I will modify the heap size by editing the following file so so do 20 00:02:05,270 --> 00:02:11,790 V.I. ATC look stash 21 00:02:14,540 --> 00:02:24,870 JVM options and we have to change the minimum and maximum size to be 4 gigabytes for example. 22 00:02:25,130 --> 00:02:37,280 So I will change his value to be 4 0 9 6 and this one also 23 00:02:40,090 --> 00:02:47,860 and then I will save and quit. 24 00:02:47,970 --> 00:02:54,680 Now I will restart looks DASH So Sue do sue 25 00:02:57,930 --> 00:03:00,490 stash start 26 00:03:03,680 --> 00:03:06,580 and these might take some time to be complete. 27 00:03:07,680 --> 00:03:08,970 So let us check again 28 00:03:12,210 --> 00:03:19,540 see now that log stash was started and although we can execute shoe import pickups script without the 29 00:03:19,540 --> 00:03:25,960 need for logs touch to be running we need that because we want to see the logs resulted in keep on a 30 00:03:25,960 --> 00:03:34,810 letter and I have already downloaded and extracted you file that we will use you with the script. 31 00:03:34,810 --> 00:03:42,430 So this is the file that I have downloaded and this is the extracted file. 32 00:03:43,090 --> 00:03:51,820 So now in the terminal window I will use the command to do 33 00:03:55,010 --> 00:03:57,710 import backup 34 00:04:00,210 --> 00:04:07,200 downloads and then you name the file and then I will click on enter. 35 00:04:08,280 --> 00:04:18,030 So now we see that the script is working and now we see that the script was completed. 36 00:04:18,060 --> 00:04:23,100 So now if I opened script 37 00:04:26,370 --> 00:04:32,460 and entered my credentials. 38 00:04:32,560 --> 00:04:36,700 So now we do not see any alerts that belongs to our current day. 39 00:04:37,060 --> 00:04:44,400 But if we changed the date to be the 40 00:04:47,930 --> 00:04:51,470 date of the picture file 41 00:04:58,060 --> 00:05:00,730 so we see now the 42 00:05:05,410 --> 00:05:10,860 alerts because that was the date of creating the pick up fight originally. 43 00:05:10,860 --> 00:05:17,580 So in this lecture I have explained using these new import caps correct and in the next lecture we will 44 00:05:17,580 --> 00:05:18,720 explore key banner.