Explaining to an ELK user?


is there any document that maps ELK Stack concepts to Graylog? In ELK we start with the beats and then move on to Logstash which is the major part to ingest, normalize, mutate and decorate the data. We keep the index with custom mapping prepared so logstash can satart pushing data in it.

How that pipleline looks like in Graylog? I see extractors, lookup tables, collectors, indices, grok patterns, pipelines but after reading the help documentation I don’t get the idea in which order we should use these components to build a similar pipeline like we we in ELK.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.