I want to know the best implementaion regarding an environment where you want to separate each system analysis. For instance if i want to analyse DNS, Web, Email, lets say i am a Service Provider where i want to provide details. Should i install separate ELK stack for each service like a cluster or i can centralise everything on one server. i hope my case is clear and your kind response is very much appreciated.
Tanks and Regards
A single cluster, with access control like what X-Pack provides, would cover this sort of use case easily.
any detail info for the setup or links
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.