Index size ELK

Tulifer · February 20, 2016, 10:54am

Hi,

I installed ELK to analyze apache logs. I have managed to make it work , but I have a question in relation to the size of the index created by logstash . I just put an input file it was 260MB and once analyzed by logstash , the index on ES was more than 300MB . No problem so far. The thing is that a log for a short day of activity is running at 2GB .
Approximately 2300MB once in ES by logstash . Knowing that I have several servers ( jboss , Apache , Tomcat ) .

How to manage the size of the index in ElasticSearch ?
Can I have multiple indexes in ES and Kibana I work on more indexes for one graph ?

Log files are rotated every day.

Thank you for your response .

warkolm · February 21, 2016, 7:46pm

Check out Elasticsearch Curator for managing indices.

Yes you can have multiple indices, it's probably a good idea for each of your sources.

Topic		Replies	Views
Index size questions Elasticsearch	3	752	September 28, 2017
Indices size is very big Elasticsearch	2	341	May 28, 2020
How to optimize Elasticsearch index data space Elasticsearch	7	10123	December 26, 2016
Size of indices are too large Logstash	11	5465	July 8, 2019
ELK-Stack Requirements Elasticsearch	1	387	October 3, 2018

Index size ELK

Related topics