How to limit logs ingestion into Elastic ?
Welcome to our community! 
It'd help if you added more information on what you are seeking to do here. Limit them in what manner?
Thanks @warkolm ,We are collecting Azure NSG flow logs and want to filter only certain types of logs like only login activity and specific port .I need help how to filter in my EKB cluster to ingest only required logs and filter others ,so that our logs ingestion & Bandwidth save.
You will need to filter out these logs prior to indexing them into Elasticsearch, e.g. in Logstash using a drop processor together with conditionals. The answer therefore depend on how your data is getting into Elasticsearch.
1 Like
Thanks for help.I will try it
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.