Graylog Outgoing traffic

Zarko · October 30, 2018, 8:58pm

Greetings Graylog community!

I’ve been trying to analyze traffic patters from our Graylog instance. By searching the community I confirmed that “Outgoing traffic” as shown on the “System / Overview” page is traffic going to ElasticSearch and that is what counts towards the license.

However, I wanted to clear up couple more things.

Is outgoing data uncompressed in any way?
I know Elastic has lz4 enabled by default so I’m wondering if that is applied before the data leaves Graylog or after it reaches ES.

Also, does “Outgoing traffic” graph include all clustered Graylog servers ?

Thanks!

jan · October 31, 2018, 8:45am

He Zarko,

the traffic is the bytes in all fields that are user-generated (internal fields are not counted) written to elasticsearch. No compression or anything else in that.

The traffic is for all Graylog servers in your cluster - if you have more question, please contact sales ( https://www.graylog.org/contact-sales )

Zarko · October 31, 2018, 1:58pm

Thank you Jan! I appreciate your help.

Topic		Replies	Views
Graylog System OverView Graylog Central (peer support)	3	1436	May 22, 2018
Graylog outgoing traffic size and indice sizes different Graylog Central (peer support)	4	2148	February 9, 2020
Outgoing traffic -vs- message size Graylog Central (peer support)	7	2402	October 15, 2019
Mismatch between reported traffic and data in indicies Graylog Central (peer support)	3	361	October 24, 2022
GB/day usage volume Graylog Central (peer support)	2	309	August 12, 2021

Graylog Outgoing traffic

Related topics