Logstash or straight?

Tuckson · October 29, 2020, 3:35pm

Hi,

Simpel question,

What would be the (dis)advantage of sending metrics via logstash to ES instead of directly?

Cheers,

Tuckson · November 12, 2020, 9:17am

nobody?

Wolfram_Haussig · November 13, 2020, 7:57am

Hello Eric,

I see the complexity as the biggest disadvantage of this setup: You have one more possible root of errors, more network traffic, one more application to maintain, update, ...

The question is: why would you want that?

If you want to post process the data yu could also use an ELasticSearch ingest pipeline.
If you do not want to open access from all servers to the elastic cluster you could host an ingest node which is accessible from those servers instead of a LogStash instance.

I am not saying that LogStash is bad - in fact we use it a lot - but I prefer to keep the pipeline from host to the Elastic Stack as clean and easy as possible.

Best regards

Topic		Replies	Views
Benefits of Metricbeat direct to ES vs Metricbeat Logstash? Beats metricbeat	2	90	November 8, 2024
Logstash like forwarder of beats. Why? Benefits? Logstash	5	629	September 1, 2019
Common Practice - Logstash or Directly to Elasticsearch Beats metricbeat	2	901	December 18, 2018
Beats to Elasticsearch or Beats to Logstash? Which is best practice Beats filebeat	3	514	April 10, 2018
Logstash and painless: is logstash going to be replaced by ingest nodes? Logstash painless	3	1724	February 21, 2020

Logstash or straight?

Related topics