Home
Use Case
Type:
Observability / Logging Stack
Typical Use Case:
Centralized log collection, parsing, search, dashboards
Famous Usage:
Cloud-native platforms, Kubernetes clusters, SRE telemetry
🟦 EFK Stack
Elasticsearch · Fluentd · Kibana
F
Fluentd
Log Collector & Router
Daemons/sidecars collect container, node, and app logs
Parses, buffers, and routes streams with plugins
Outputs to Elasticsearch (or S3, Kafka) for durability
↓
ES
Elasticsearch
Search & Analytics Engine
Indexes structured/unstructured logs for fast search
Aggregations for metrics, trends, anomalies
Sharding/replicas for scale and resilience
↓
K
Kibana
Visualization & Dashboards
Discover, Lens, dashboards for observability views
Alerting and anomaly detection jobs
Access control, spaces, sharing for teams
Flow:
Fluentd collects and routes → Elasticsearch indexes and analyzes → Kibana searches, visualizes, and alerts.