Custom UDP Logs

Thomas_Baumann · March 29, 2023, 9:10pm

Hello,

we are using an Fleet Server, including Custom UDP logs integration. We observed an issue with data are not ingested with a load about 500 EPS. About 30% to 50 % messages are not ingested.

Also netstat -ulpn shows that the receive queue is quite high:

udp 116480 0 127.0.0.1:1514 0.0.0.0:* 726338/filebeat

CPU and Memory usage is low, also no IO issues detected. Does somebody uses this integration successfull in production environments ? With an acceptable processing rate ?

We switched back to some more mature implementation, logstash directly to elasticsearch. We reached about 5000 eps without any issues.

Would be great that somebody can share his experience as well.

system · April 26, 2023, 9:11pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Integration Issue with Sending Windows Event Logs to Elastic-Agent and Logstash via UDP Elastic Agent	0	16	July 31, 2024
Custom UDP Logs Integration Not Ingesting Data Elastic Agent integrations	7	454	April 25, 2024
Logstash UDP input only processing ~1000 events/sec Logstash	2	474	February 26, 2017
UDP input plugin monitoring and elasticsearch output Logstash	5	1428	August 22, 2017
Elastic-agent Custom UDP Logs Log Parsing Field Mapping Issue Elastic Agent	3	28	August 8, 2024

Custom UDP Logs

Related Topics