I have graylog2 taking about 500 messages/sec on a syslog input. The elasticsearch cluster is on a separate set of servers from graylog2. I am wondering why this file gets so large and what I can do to keep the size down. It being that big, it seems to me it would be a problem with feeding messages to elasticsearch for indexing but I am not sure how to troubleshoot.
Thanks! -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
