Hi Roberto, if you are only interested in the indexed messages you can simply backup the Elasticsearch cluster used by your Graylog installation as described in http://www.elasticsearch.org/guide/en/elasticsearch/guide/current/backing-up-your-cluster.html. After that simply delete all indices starting with *graylog2_* as described in http://www.elasticsearch.org/guide/en/elasticsearch/reference/current/indices-delete-index.html and restart Graylog.
Cheers, Jochen On Monday, 23 February 2015 20:26:44 UTC+1, [email protected] wrote: > > Dear, I have Graylog2 with 35 millions of registries. > > I want to purge and archive all the logs in order to have a backup > database with that content (for possible future analysis) and start to fill > out the current database with new logs. > > Please, what is the easiest way to do this ??? > > Thanks a lit, > > Roberto > -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
