Yes, that's exactly what ELK will do. - Logstash to collect your distributed logs - Elasticsearch to store them centrally - Kibana as the dashboard to search and display results from Elasticsearch using whatever criteria you like Both Kibana 3 and 4 have the option to visualise the data in various charts, etc, as well as looking at the raw log data, so seems to be a good fit for what you're trying to do
On Friday, 27 March 2015 10:57:42 UTC, Thomas Güttler wrote: > > Hi, > > I am planing to use ELK for our log files. > > I read docs about logstash, elasticsearch and kibana. > > Still the whole picture is not solid. > > Especially the reporting area is something I can't understand up to now. > > Kibana seems to be a great tool to do the visualization. > > But can I get the single log for debugging the root of problems? > > Example: I see that 99 systems work fine, and 1 systems emits warnings. > > Which interface could I use the see the logs in ElasticSearch > of this system? > > Needed features: > > Show all logs from system "foo" in the period between 2015-03-27 00:00 and > 00:10 (ten minutes). > > Show all logs with log level "error" of system "foo" in day 2015-03-27 > > Is Kibana the right tool for this? > > Or am I on the wrong track? > > Which tool could be used to analyze log data in ElasticSearch? > -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/011591f4-ef5d-46ef-89ec-3a6994da4f1d%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
