How to Secure Elasticsearch Cluster

Hi All,

How do we keep track of transactions hitting ES from our application?
for ex:- Suppose If someone accessing the ES Cluster from another application with IP Address & port.
Is there a way to denied the transactions or how to secure our Elasticsearch cluster?

ElasticSearch offers no concept of “users”, nor even an identity/authentication concept (unless you also deploy Shield).

How do you intend to protect the ElasticSearch services?

Please provide some feedback and it would very helpful.

Regards,
Ganeshbabu R