Like many others, I have the ELK stack. With very little data in elastic
search, kibana 3 is super fast, but in my production environment, kibana
sometimes even fails to show any data.
We are doing about 150GB per index, 600 million documents.
6 shards per index, replication 1.
I don't know if I'm severely under provisioned in the amount of machines I
need, or if my Kibana is misconfigured. Using the ES "head" plugin, I can
run a search against a Logstash index and search for a host and get a
really fast response time so my suspicion is with Kibana.
Like many others, I have the ELK stack. With very little data in elastic
search, kibana 3 is super fast, but in my production environment, kibana
sometimes even fails to show any data.
We are doing about 150GB per index, 600 million documents.
6 shards per index, replication 1.
I don't know if I'm severely under provisioned in the amount of machines I
need, or if my Kibana is misconfigured. Using the ES "head" plugin, I can
run a search against a Logstash index and search for a host and get a
really fast response time so my suspicion is with Kibana.
Well, my slow logs are 0 bytes. My logging.yml looks okay but I don't think
they are configured. I looked at the ES docs and saw that I should have
these set somewhere. I'm thinking elastic search.yml configuration file?
Turns out you shouldn't use the head plugin when querying for hot threads.
I was able to get them by querying the API directly. Thanks for the tip!
On Monday, August 4, 2014 11:28:16 PM UTC-7, Tony Chong wrote:
Well, my slow logs are 0 bytes. My logging.yml looks okay but I don't
think they are configured. I looked at the ES docs and saw that I should
have these set somewhere. I'm thinking Elasticsearch.yml configuration
file?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.