Hi Everyone, I am new to this community and trying to get ELK stack in my office environment. I need some help with the Hardware requirements for standing-up the ELK stack. I want to install winlogbeat on 80 hosts in my environment and aggregate syslogs and security logs. What are the computing resources needed? If any one have any documentation that can help me with the installation and get going with winlog beat agents please provide them to me. Thank you guys!
it depends
Check these out:
- https://www.elastic.co/videos/getting-started-with-winlogbeat
- https://www.elastic.co/solutions/security-analytics
- https://www.elastic.co/elasticon/conf/2016/sf/quantitative-cluster-sizing
Depending on how much daily data is ingested into your Elasticsearch cluster in-line with a retention in mind then you can size your Elasticsearch cluster accordingly.
For ELT tools, start with the defaults and build out.
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.