ELK Stack is a collection of three open-source tools: Elasticsearch, Logstash, and Kibana, used for search, analysis, and visualization of logs.
What is ELK Stack?
ELK Stack provides a complete solution for log management, from collection to visualization, enabling real-time analysis of large volumes of data.
Components
Elasticsearch
- Search engine: Distributed database
- Indexing: Document storage
- REST API: Query interface
- Scalability: Horizontal and vertical
Logstash
- Collection: Data ingestion
- Processing: Data transformation
- Delivery: Delivery to Elasticsearch
- Plugins: Functionality extensions
Kibana
- Visualization: Interactive dashboards
- Analysis: Data exploration
- Alerts: Data-based notifications
- Dev Tools: Development tools
Related Concepts
- Prometheus - Complementary metrics
- Grafana - Alternative visualization
- Logs - Logs that ELK processes
- SIEM - System that can integrate ELK
- Monitoring and Review - Process that ELK supports