I have a situation where the main division elastic cluster is collecting logs from divisional applications, out group being a small part. We would like to pull our data out of the main cluster, into our departments smaller cluster and reindex it according to our specific needs. I think this should be possible using logstash but is there a way to schedule the query like in the jdbc plugin to maintain some sort of near-real time aspect to the data?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.