-
Notifications
You must be signed in to change notification settings - Fork 0
Elasticsearch Plugin
Jacob van Walraven edited this page Jan 12, 2020
·
3 revisions
The Elasticsearch output plugin stores the generated results into a Elasticsearch instance.
By default the results will be batched and sent in groups off 200. This can be changed in the plugins configuration to suit each users needs.
If the Elasticsearch instance is offline results will be temporarily written to a log file at /tmp/libtrace-bigdata.elasticsearch. Once back online the application will execute the backlog of results against Elasticsearch.
Elasticsearch index mappings can be found for each input plugin here
elasticsearch:
enabled: 1
host: http://192.168.20.40
port: 9200
ssl_verify_peer: 1
# Does elasticsearch require user/pass authentication (Normally when using X-Pack)
require_user_auth: 0
username: admin
password: admin
# Enable to send results to elasticsearch in batches
batch_results: 1
# If batching results, how many to send at a time
batch_count: 200