Introduction to ELK stack

When you work with systems that consist with more than 1 server and include many different component that interact with other third party ones, then you also need a way to trace issues. In order to trace issues you need to collect as much information you can about the current state of that system or potentially from other systems as well and correlate with the time of the indecent. »

ElastAlert as a Docker container

If you are working in a custom system, then logging is one of the most important aspects of that system. If you are in a system that does not allow external logging services such as Newrelic, Papertrail, Logentries or you do not want to outsource this to a third party for personal reasons then please continue reading, but first please see the intro about logging One solution for internal logging cluster is the modern Elastic stack known also as ELK. »