Hello,
When having a Elastic Master servers and Elastic Data servers, should the Logstash consumer point to the Elastic Data for the output or the Elastic Master? What is the difference between the two connections/outputs and which one is recommended?
If you have dedicated master nodes in the cluster these should be left to manage the cluster and you should point Logstash to just the data nodes. The whole point of having dedicated mater nodes is to avoid them getting overloaded or have a lot of GC, and the best way to do this is to not send requests to them.
I have setup the logstash to point to the data nodes. All the data is getting replicated across all 3 data nodes. Is this normal behavior? Shouldn't the data be split across all 3 data nodes? The elasticsearch.yml for the data nodes has the following fields added to it:
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.