https://habrahabr.ru/post/280488/
http://www.avitzurel.com/blog/2016/06/06/running-elk-on-docker---full-solution/
https://www.exoscale.ch/syslog/2016/07/11/elk-docker/
https://qbox.io/blog/elasticsearch-python-django-database
http://insightdataengineering.com/blog/elasticsearch-crud/
https://marcobonzanini.com/2015/08/18/building-a-search-as-you-type-feature-with-elasticsearch-angularjs-and-flask-part-2-front-end/
http://www.allitebooks.com/?s=SOLR
http://habrahabr.ru/company/wrike/blog/274059/ solr
http://blog.thehumangeo.com/2015/12/21/elasticsearch-data-engineering/
http://engineering.bloomreach.com/solr-compute-cloud-an-elastic-solr-infrastructure/
https://www.youtube.com/watch?v=G5aSnkxFjHM
https://www.youtube.com/watch?v=7WIbU3ZlTe4
Solr + Spark
https://www.youtube.com/watch?v=4AbmxGsjb9o
https://www.youtube.com/watch?v=ASlAwlZudUk
http://qaware.blogspot.com/2015/06/solr-with-sparks-or-how-to-submit-spark.html
http://gethue.com/build-a-real-time-analytic-dashboard-with-solr-search-and-spark-streaming/
http://yonik.com/solr-tutorial/
http://blog.sematext.com/2015/08/25/solr-top-10-mistakes-while-learning/
http://blog.sematext.com/2015/10/16/large-scale-log-analytics-with-solr/
http://blog.sematext.com/2015/09/29/solrcloud-large-tenants-and-routing/
http://blog.comperiosearch.com/blog/author/sebm/
http://habrahabr.ru/company/custis/blog/234049/
http://www.confluent.io/blog/making-sense-of-stream-processing/
http://jasonwilder.com/blog/2012/01/03/centralized-logging/
http://jasonwilder.com/blog/2013/07/16/centralized-logging-architecture/
https://moz.com/blog/technical-seo-log-analysis
https://news.ycombinator.com/item?id=4418373
http://engineering.bloomreach.com/solr-compute-cloud-an-elastic-solr-infrastructure/
https://www.elastic.co/blog/elasticsearch-as-a-time-series-data-store
https://www.pandastrike.com/posts/20150807-fluentd-vs-logstash
http://habrahabr.ru/post/236341/
http://habrahabr.ru/post/260869/
http://habrahabr.ru/post/261197/
https://www.elastic.co/guide/en/elasticsearch/guide/current/index.html
https://www.found.no/foundation/elasticsearch-internals/
http://blog.parsely.com/post/1691/lucene/
http://blog.tryolabs.com/2015/02/17/python-elasticsearch-first-steps/
http://stackoverflow.com/questions/10213009/solr-vs-elasticsearch
http://engineering.laterooms.com/enriching-logs-with-logstash/
http://blog.comperiosearch.com/blog/2015/02/09/kibana-4-beer-analytics-engine/
http://improveandrepeat.com/2014/10/monitor-your-applications-with-kibana/
https://news.ycombinator.com/item?id=8977393
http://blog.webkid.io/visualize-datasets-with-elk/
https://www.digitalocean.com/community/tutorials/how-to-install-elasticsearch-logstash-and-kibana-4-on-ubuntu-14-04
http://brewhouse.io/blog/2014/11/04/big-data-with-elk-stack.html
https://www.digitalocean.com/community/tutorials/building-for-production-web-applications-centralized-logging
http://blog.takipi.com/log-management-tools-face-off-splunk-vs-logstash-vs-sumo-logic/
http://blog.sematext.com/
http://www.rittmanmead.com/2015/04/using-the-elk-stack-to-analyse-donors-choose-data/
https://news.ycombinator.com/item?id=9686120
http://jasonwilder.com/blog/2013/11/19/fluentd-vs-logstash/
https://github.com/jedisct1/flowgger
Flowgger is a fast, simple and lightweight data collector written in Rust.
It reads log entries over a given protocol, extracts them, decodes them using a given format, re-encodes them into a different format, and asynchronously pushes the result into a remote data store.
Flowgger is designed to be:
Paranoid: it carefully validates input data to prevent injection of malformed/incomplete records down the chain.
Safe: written in Rust, without any unsafe code.
Fast: even though messages are systematically parsed and validated, Flowgger is orders of magnitude faster than Logstash and Fluentd.
Standalone: it comes as a single executable file, and doesn't require a JVM.
Flowgger supports common input types: stdin, UDP, TCP, TLS and Redis, as well as multiple input formats: JSON (GELF), LTSV, Cap'n Proto and RFC5424. Normalized messages can be sent to Kafka, Graylog, to downstream Flowgger servers, or to other log collectors for further processing.