Logs not coming when backlog exceeded 1M

Tafsir_Alam · September 10, 2018, 5:01pm

Hi All

Seen a new Issue in graylog.

When backlog exceeded 1M on graylog node then logs stop coming to the stream or in the dashboard. And when it starts decreasing below 1M logs start coming. Not able to understand the issue, Please help me to solve this.

Graylog version - 2.4.6
Elasticsearch Version - 5.6

Thanks

jan · September 11, 2018, 7:03am

He @Tafsir_Alam

when you try to tell us that if your journal is over 1 million messages the messages are dropped than you have two things you should do:

increase the Elasticsearch ressources to be able to work with your ingest rate
raise your journal size in the server.conf

system · September 25, 2018, 7:03am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog journal continuously growing up Graylog Central (peer support)	8	8068	August 9, 2017
Answer to Graylog Journal is fully utilized and there are millions of unprocessed messages Graylog Central (peer support)	5	2133	January 11, 2019
Journal Utilization is too high Graylog Central (peer support)	17	18820	November 20, 2017
Graylog Overload behavior Graylog Central (peer support)	3	1357	January 4, 2018
Journal keeps growing Graylog Central (peer support)	8	2034	March 21, 2018

Logs not coming when backlog exceeded 1M

Related topics