Hi all,
I have ELK framework setup on my system.
I am interested collecting logs from remote server and forward them to ELK
server.
I see there are logstash shipper and logstash forwarder approaches to do
that.
My remote servers have huge logs which I can't just forward without
filtering as it choke the network.
So,
- can I do filtering on remote servers, and then forward only the
filtered logs to ELK server for indexing? - What could be the performance impact to have logstash filtering on
each remote servers? - What architecture is suggested for scenarios with large logs on
remote servers?
Your help would be appreciated.
Thanks,
Vilas
--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/b57dbe64-dc46-4f80-9443-9dd73aadc19c%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.