The Elasticsearch cluster state is RED which means shards are unassigned. This usually indicates a crashed and corrupt cluster and needs to be investigated. Graylog will write into the local disk journal. Read how to fix this in
What can i do Elasticsearch cluster is red. Shards: 0 active, 1 initializing, 0 relocating, 0 unassigned, -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/477c420f-2e0a-4ac4-a6d1-d58c0a44c115%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
