Graylog Outgoing traffic

Zarko · October 30, 2018, 8:58pm

Greetings Graylog community!

I’ve been trying to analyze traffic patters from our Graylog instance. By searching the community I confirmed that “Outgoing traffic” as shown on the “System / Overview” page is traffic going to ElasticSearch and that is what counts towards the license.

However, I wanted to clear up couple more things.

Is outgoing data uncompressed in any way?
I know Elastic has lz4 enabled by default so I’m wondering if that is applied before the data leaves Graylog or after it reaches ES.

Also, does “Outgoing traffic” graph include all clustered Graylog servers ?

Thanks!

jan · October 31, 2018, 8:45am

He Zarko,

the traffic is the bytes in all fields that are user-generated (internal fields are not counted) written to elasticsearch. No compression or anything else in that.

The traffic is for all Graylog servers in your cluster - if you have more question, please contact sales ( https://www.graylog.org/contact-sales )

Zarko · October 31, 2018, 1:58pm

Thank you Jan! I appreciate your help.

system · November 14, 2018, 1:58pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog System OverView Graylog Central (peer support)	3	1402	May 22, 2018
Graylog License Graylog Central (peer support)	4	1025	June 13, 2018
Graylog outgoing traffic size and indice sizes different Graylog Central (peer support)	4	2057	February 9, 2020
Outgoing traffic -vs- message size Graylog Central (peer support)	7	2298	October 15, 2019
Graylog Incoming vs Outgoing Traffic Dashboard Graylog Central (peer support)	4	2307	June 1, 2020

Graylog Outgoing traffic

Related topics