Hi Keamas, please refer to https://www.elastic.co/guide/en/elasticsearch/reference/2.3/setup-configuration.html and https://www.elastic.co/guide/en/elasticsearch/guide/2.x/heap-sizing.html for information about sizing Elasticsearch and changing its memory configuration.
Elasticsearch should at least have 4 GB of memory (and of course way more if you ingest more messages). Cheers, Jochen On Friday, 8 July 2016 12:36:04 UTC+2, Keamas M wrote: > > Hey, here are the details of the system: > I installes de dpkg files like in here on the Ubuntu 16.04 LTS > http://docs.graylog.org/en/2.0/pages/installation/os/ubuntu.html > > Everything is running on one single VM Graylog and Elasticsearch. > > > VMware > > 1 Virtual Socket > > 2 Cores > > Memory: 8GB RAM > HDD 800 GB > > root@ATLOG001:/home/ladmin# uname -a > Linux ATLOG001 4.4.0-28-generic #47-Ubuntu SMP Fri Jun 24 10:09:13 UTC > 2016 x86_64 x86_64 x86_64 GNU/Linux > > > root@ATLOG001:/home/ladmin# lsb_release -a > No LSB modules are available. > Distributor ID: Ubuntu > Description: Ubuntu 16.04 LTS > Release: 16.04 > Codename: xenial > > SystemHostname:ATLOG001Node ID:e2b97d26-f84a-4a82-99ba-3bedfbb5b207 > Version:2.0.3 (f07c170), codename *Rothaus*JVM:PID 1014, Oracle > Corporation 1.8.0_91 on Linux 4.4.0-28-generic > > > I can easily add more system ressources please let me know hoch much. > > How can I give Elastisearch more memory ? How much should I give? > > > The Input ist UDP Syslog. I am receiving the Syslog messages of a Firewall > which are quite a lot of messages. > > > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/145ac890-e092-434e-8c7e-fee2c3cb43e6%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
