Delete old indices automatically?

munotshubham · June 21, 2017, 7:19pm

Hi,

So I have created an ELK stack for passing IIS logs and it is generating around 3GB a day and it is storing in an index a day. Eg: filebeat-2017.06.21

I want to delete old index so that ElasticSearch doesn't crash. How should I do?
Do I have to do this manually or is there a way?

I saw something called "Curator"? Should use that?

theuntergeek · June 21, 2017, 10:46pm

Yes. Read the documentation for more information.

munotshubham · June 22, 2017, 12:57pm

Hey thanks. I used their python library, wrote a script and added a job on crontab.
Thanks anyway.

munotshubham · June 28, 2017, 6:39pm

Hey,

It is working fine, but after deleting the old indices, it regenerates after a minute or two. What should i do?

theuntergeek · June 28, 2017, 8:14pm

That can only happen if data is still being written to those indices. I'd investigate that.

Topic		Replies	Views
Auto recycle an old index? Elasticsearch	4	993	February 10, 2017
Automatically removing index Elasticsearch	3	14342	December 6, 2017
How to delete old indices in ES 2.3 Elasticsearch	4	609	July 5, 2017
Automate deletion of indices Elasticsearch	2	432	January 13, 2017
How to remove old indices and old logs after specific duration? Elasticsearch	3	18664	April 17, 2017

Delete old indices automatically?

Related topics