Hi Keamas, please refer to https://www.elastic.co/guide/en/elasticsearch/reference/2.3/setup-configuration.html and https://www.elastic.co/guide/en/elasticsearch/guide/2.x/heap-sizing.html for information about sizing Elasticsearch and changing its memory configuration.
Elasticsearch should at least have 4 GB of memory (and of course way more if you ingest more messages). Cheers, Jochen On Friday, 8 July 2016 12:36:04 UTC+2, Keamas M wrote: > > Hey, here are the details of the system: > I installes de dpkg files like in here on the Ubuntu 16.04 LTS > http://docs.graylog.org/en/2.0/pages/installation/os/ubuntu.html > > Everything is running on one single VM Graylog and Elasticsearch. > > > VMware > > 1 Virtual Socket > > 2 Cores > > Memory: 8GB RAM > HDD 800 GB > > root@ATLOG001:/home/ladmin# uname -a > Linux ATLOG001 4.4.0-28-generic #47-Ubuntu SMP Fri Jun 24 10:09:13 UTC > 2016 x86_64 x86_64 x86_64 GNU/Linux > > > root@ATLOG001:/home/ladmin# lsb_release -a > No LSB modules are available. > Distributor ID: Ubuntu > Description: Ubuntu 16.04 LTS > Release: 16.04 > Codename: xenial > > SystemHostname:ATLOG001Node ID:e2b97d26-f84a-4a82-99ba-3bedfbb5b207 > Version:2.0.3 (f07c170), codename *Rothaus*JVM:PID 1014, Oracle > Corporation 1.8.0_91 on Linux 4.4.0-28-generic > > > I can easily add more system ressources please let me know hoch much. > > How can I give Elastisearch more memory ? How much should I give? > > > The Input ist UDP Syslog. I am receiving the Syslog messages of a Firewall > which are quite a lot of messages. > > > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/145ac890-e092-434e-8c7e-fee2c3cb43e6%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
