I've been running graylog 0.90 from when it first released and now I'm going to be upgrading to 1.1.3 and have a couple of questions. First of all I'm going to start clean, meaning I'm going to delete the mongodb and elasticsearch data.
1) I only had one elasticsearch server, but now I want to add another one. The thing is this new one has about 50% less CPU and Memory than the first server, so I want to configure graylog to split the indices in a way that accounts for that, what I want is better performance, I don't want redundancy. How should I configure the shards or other necessary settings. 2) I'm installing the deb files, are the deb files available the latest version? I ask because the deb files say only 1.1 on them so I really can't tell. If indeed that's correct what should I do to update the 1.1 deb to 1.1.3. 3) Does the new version of graylog has any way for me to run a saved search and dump the result to a csv via a schedule or command line? I need to have the output of some saved searches sent to me every day without actually having to go to the UI and manually doing it. Thank you for a great tool. -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
