E = Elasticsearch
Elasticsearch is one of the most popular search engines.
It is perfect for storing unstructured data, then retrieving data when needed with blazing speed via its search engine capabilities built on Apache Lucene.
It is commonly used for:-
Log analytics,
Full-text search,
Security intelligence,
Business analytics,
Operational intelligence use cases.
It automatically stores the original document and adds a searchable reference to the document in the cluster’s index.
It offers the concept of the gateway, which allows for creating full backups easily.
L = Logstash
Logstash is an open-source data ingestion tool that allows you to collect data from a variety of sources, transform it, and send it to your desired destination.
It is lightweight.
It is most often used as a data pipeline for Elasticsearch, an open-source analytics and search engine.
It is a popular choice for loading data into Elasticsearch.
It offers pre-built filters, readily transforms common data types & starts querying without having to build custom data transformation pipelines
K = Kibana
Kibana lets users visualize data with charts and graphs in Elasticsearch.
Users can create bar, line and scatter plots, or pie charts and maps on top of large volumes of data.
It also provides a presentation tool, referred to as Canvas.
It stores its objects as documents in the . kibana index in Elasticsearch.
Elasticsearch acts as a database where the data is collected and Kibana uses the data from Elasticsearch to represent the data to the user in the form of bar graphs, pie charts, heat map
ELK Stack
ELK is one of the popular log management platforms used worldwide for log analysis.
A search engine at heart, users started using Elasticsearch for logs and wanted to easily ingest and visualize them. Enter Logstash, the powerful ingest pipeline, and Kibana, the flexible visualization tool.