Opsdash provides near realtime storage and querying of the large volume of traffic reaching the Deflect edge (many millions of events per day).
It is composed of:
- an Elasticsearch cluster for data storage and querying;
- a Kibana interface to quickly and easily create visualisations of complex data;
- Logstash to enrich and insert logs into Elasticsearch;
- Log-courier to ship logs securely and rapidly from the edge to Logstash;
- nginx to restrict access to the powerful Elasticsearch API.