Skip to content

ELK/EFK

ELK vs EFK

  • Elastic Search, LogStash, Kibana
  • Elastic Search, FluentD, Kibana

This is a triple series of tools designed as an open source alternative to collect logs within companies. It is most well-known for being the choice logging within Kubernetes.

This is used for searching within logs. It can run analytics on the logs.

LogStash and FluentD

These are analytics engines that read unstructured data and turn them into searchable/structured data. Configured as a running service on each server/node to collect the logs and send them to the centralized log server.

Kibana

This is a visualization tool that takes the structured data and puts a UI/query tool on top of it to search through the logs. Create dashboards to track information around servers/applications.