Hello there,
I can’t figure out which exact log sources is causing the following error message:
java.lang.IllegalArgumentException: Limit of total fields [1000] in index [graylog_000] has been exceeded"
Of course I can increase the total fields size to a higher number, but this slows down Graylog (regarding to the instructions on What to Do When You Have 1000+ Fields? | Graylog)
I already use a separate stream with a separate index for specific (big) log sources I’m aware of (that works fine).
But such error messages still occur sometimes, which come from log sources I can’t recognize.
Does somebody know an apprach how to find it out?
Thanks in advance!