Hello,
We recently rolled out Opensearch v2.5 to store app log data, where apps are running in traditional VMs & used filberts as log forwarder service.
We aim to use opensearch instance to store the app logs generated by containers which are running in Openshift cluster.
So, which log forwarding mechanism is relevant ?
Was looking at Redhat Cluster logging operator but it do not support opens each as output.
Any one encountered this use case? any pointers to solution is appreciated.
Thanks.
Hey @Sujeeth
I think it’s better to use the official OpenShift Logging Operator that is supported by Red Hat:
https://docs.openshift.com/container-platform/4.11/logging/log_collection_forwarding/log-forwarding.html
There is an HTTP output in the Vector collector. You can use it to ingest data to Logstash:
Undertood its an option… but it comes with one more hop in between.
On other project, we moved from Logstash to filbeats for efficiency purposes… But now again Logstash looks overhead…
other alternatives ??