K
Q

Need to ship logs to elastic from EKS

11/25/2019

We have an EKS cluster running and we are looking for best practices to ship application logs from pods to Elastic. In the EKS workshop there is an option to ship the logs to cloudwatch and then to Elastic.

Wondered if there is an option to ship the logs directly to Elastic, or to understand best practices.

Additional requirement: We need the logs to determine from which namespace the logs is coming from and to deliver a dedicated index

-- Mickey Hovel
eks
elasticsearch
fluentd
kubernetes

Similar Questions

Upgrading connection error in Port forwarding via client-go
error validating data: [ValidationError(Deployment.spec): unknown field "containers" in io.k8s.api.apps.v1.DeploymentSpec
Change the spring boot admin registery unique ID
Can't expose port on local Kubernetes cluster (via Docker Desktop)

1 Answer

11/25/2019

You can deploy EFK stack in kubernetes cluster. Follow the reference --> https://github.com/acehko/kubernetes-examples/tree/master/efk/production

Fluentd would be deployed as DaemonSet so that one replica is run on each node collecting the logs from all pods and push them to elasticsearch

-- P Ekambaram
Source: StackOverflow