Im new in Elasticsearch.
I have a project to collect syslogs from some servers using custom grok filter.
I can write different logs to different indexes and works fine.
Kibana reporting is a great tool, but my goal is to use SQL for PowerBI as reporting.
My main issue is that using REST API only get 10000 rows.
Is that possible to use another DB engine with Lucene like MariaDB and export some data from ELK to MariaDB in the same server?
How i do that? Off course without the limit of rows, because at this time i have some issues with limit rows, i want all data from one day.
I have not tested it but I believe this could be done. Use an elasticsearch input. Then either use a third-party jdbc output or use a jdbc_streaming filter to execute INSERTs (in which case you do not need an output).
Thanks for your reply.
At this moment i use logstash as output.
What i need is that the output become logstash and MariaDB Database.
I try to use jdbc output without success, as you said use the jdbc streaming to execute inserts into MariaDB? Is that correct?
It works with jdbc output plugin.
Another question the records appears in Kibana second by second, is it possible to change de save time between 5 by 5 minutes?
Because if i saved all records second by second de database increases very shortly.
Is that a definition in elasticsearch?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.