Hello,
in a past few months I was gathering logs from different sources (applications, vmware, databases) using one machine with ELK stack in my company for proof of concept. Our goal is to gather logs in one place using ELK stack. For that purpose we bought license for five ES nodes. So could you please enlighten me on a few things:
- How many data and machine learning nodes should I configure? (I already configure 3 master node)
- Do I need cleint node?
- Is it beater to use native load-balancing (Logstash) or for example Citrix NetScaler in front of elasticsearch cluster?
BR,
Mladen