Hi,
In my current setup, logs are being generated at 10 GB/day from different applications. Log cycle is Filebeat-> Logstash->Elasticsearch->Kibana.
After doing research, i found that we can delete the old indices using elasticsearch-curator. I am following this documentation.
https://www.elastic.co/guide/en/elasticsearch/client/curator/current/delete_indices.html.
I can able to to delete the indices which are older than the specified time with the help of this example Action File
https://www.elastic.co/guide/en/elasticsearch/client/curator/current/ex_delete_indices.html.
Here are my questions.
- Does deleting the indix deletes the logs indexed also?
- Does deleting frees the disk-space consumed by the logs?