(not sure if I should put this in elasticsearch or kibana topic)
Setup: logstash -> elasticsearch, index name is based on timestamp of event, so every day around midnight we get a new index.
The issue is twofold:
elasticsearch momentarily marks the cluster as yellow since the new index is on only one node
kibana notifies everyone about it because of the cluster health alert
Is there a way to tell either kibana (alerting) or elasticsearch not to worry when it's yellow for less than e.g. a minute? Or even better, to ignore new indices in cluster health for X time? Nothing in our stack breaks at less than a minute of downtime so it wouldn't be an issue, and I really want to avoid a "boy who cried wolf" scenario when anything important goes wrong.
Thanks! That seems to be right. Is it possible that I can't add labels to it? I can't seem to find how to do that. For reference, this is the one: https://github.com/elastic/kibana/issues/82925
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.