Any way to compress output before sending to elasticsearch?

rahin88 · April 21, 2016, 2:14pm

Hi All,

Still new to ELK. I have logstash running on my machine generating 1mbps of plain text data(with lot of redundancy of text in logs). Is there a way to encode/compress this output so it consumes less bandwidth and at the same time I need/want to decode this on cloud and feed it my elasticsearch.

Logstash(on my machine low resources)(compressed data) --> (decode it some how) elasticsearch(on my server)

Logstash(on my machine low resources)(compress data output plugin) --> (decode data input plugin)(logstash)(on centralized server)(elastic search output plugin)---> elasticsearch(on my server)

Are there any ways or plugins to address my problem. theme is to save network bandwidth.

Thanks
Aditya

Alberto_Yoldi · April 28, 2016, 11:11am

Im also interested! Anyone that could help? Thanks!

mnhan · April 28, 2016, 4:27pm

logstash forwarder (filebeat) has compression capability. Can you use filebeat for compressing the logs to ship to LS sitting on ES box or directly to ES?

Alberto_Yoldi · April 29, 2016, 7:01am

HI Michael,

Thanks a lot for your answer. I dont have the possibility to install LS on the ES box, but I will explore the filebeat documentation to see if it can send the logfiles already compressed and directly to ES.

Regards,

Topic		Replies	Views
How to compress data when write into es Elasticsearch	5	2823	March 17, 2022
Send JSON formatted logs directly to elasticsearch Elasticsearch	5	8989	April 4, 2017
Throttling processing of log backfill using Filebeat Beats	11	3498	May 17, 2017
Syslogging Struggle - newbie alert Elasticsearch	5	583	December 21, 2021
Logs are getting big in elasticsearch Elasticsearch	6	4905	April 6, 2017

Any way to compress output before sending to elasticsearch?

Related Topics