Ok. I've found these answer - Lots of Beats input
It says add congestion_threshold
And I've added. So now logs contains only
retrying failed action with response code: 503
I've found Retrying failed action with response code: 503
ugh:
curl -XGET http://localhost:9200/_cluster/health
returns
{"cluster_name":"elasticsearch","status":"red","timed_out":false,"number_of_nodes":1,"number_of_data_nodes":1...}
status "red" 
Can I fix that without removing all my data and/or indixes ?