Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Elastic search with Google Big Query

Tags:

elasticsearch

google-bigquery

I have the event logs loaded in elasticsearch engine and I visualise it using Kibana. My event logs are actually stored in the Google Big Query table. Currently I am dumping the json files to a Google bucket and download it to a local drive. Then using logstash, I move the json files from the local drive to the elastic search engine.

Now, I am trying to automate the process by establishing the connection between google big query and elastic search. From what I have read, I understand that there is a output connector which sends the data from elastic search to Google big query but not vice versa. Just wondering whether I should upload the json file to a kubernete cluster and then establish the connection between the cluster and Elastic search engine.

Any help with this regard would be appreciated.

like image 952
user3447653 Avatar asked Aug 31 '16 14:08

user3447653

2 Answers

Although this solution may be a little complex, I suggest some solution that you use Google Storage Connector with ES-Hadoop. These two are very mature and used in production-grade by many great companies.

Logstash over a lot of pods on Kubernetes will be very expensive and - I think - not a very nice, resilient and scalable approach.

like image 168
Allan Sene Avatar answered Oct 25 '22 18:10

Allan Sene

Apache Beam has connectors for BigQuery and Elastic Search, I would definitly perform this using DataFlow so you don´t need to implement a complex ETL and staging storage. You can read the data from BigQuery using BigQueryIO.Read.from (take a look to this if performance is important BigQueryIO Read vs fromQuery) and load it into ElasticSearch using ElasticsearchIO.write()

Refer this how read data from BigQuery Dataflow

https://github.com/GoogleCloudPlatform/professional-services/blob/master/examples/dataflow-bigquery-transpose/src/main/java/com/google/cloud/pso/pipeline/Pivot.java

Elastic Search indexing

https://github.com/GoogleCloudPlatform/professional-services/tree/master/examples/dataflow-elasticsearch-indexer

UPDATED 2019-06-24

Recently this year was release BigQuery Storage API which improve the parallelism to extract data from BigQuery and is natively supported by DataFlow. Refer to https://beam.apache.org/documentation/io/built-in/google-bigquery/#storage-api for more details.

From the documentation

The BigQuery Storage API allows you to directly access tables in BigQuery storage. As a result, your pipeline can read from BigQuery storage faster than previously possible.

like image 28
hlagos Avatar answered Oct 25 '22 19:10

hlagos
Sign in to Comment

Related questions

ElasticSearch Bool Filter with a Phrase (instead of a single word/tag)
elasticsearch client thread safety
NEST (elasticsearch) Highlighting in multiple fields
How to define a mapping in elasticsearch that doesn't accept fields other that the mapped ones?
how to use sincedb in logstash?
Unique count of terms aggregations
ElasticSearch QueryParsingException failed to find geo_point field
Spring Data ElasticSearch TransportClient Java Config
Kibana 4 , making pie chart , error message
Why do I need a broker for my production ELK stack + machine specs?
Searching for term and range in same bool filter in elasticsearch
Trouble setting request specific timeout in Elasticsearch DSL
Documents are automatically getting deleted in Elasticsearch after insertion
ElasticSearch: inner_hits and hightlight_query
python elasticsearch-dsl parent child relationship
ElasticSearch: Is it possible to give a lower score for fuzziness?
How insure indexing every object with Firebase FlashLight in a ElasticSearch Bonsai Free Instance
ElasticSearch - alias auto update for rolling index
Elasticsearch Scripting: updating array value
Elasticsearch: remove/update field inside nested object

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!