We have set up our production environment with a 5 ES node cluster (3 hot and 2 warm) with a curator executing cronjob to push older logs into the warm nodes. As per industry regulations, curator password expired and was not reset on time, hence older logs filled up the data storage in the hot nodes. Even after password reset and moving older logs into warm nodes, logstash is unable to push the logs into elasticsearch.
Attaching the screenshot of the error at logstash and elasticsearch.
Let me know if further details are required?