Data architecture

There are various methods for retrieving fields in Elasticsearch, including: _source, stored_fields, fields & docvalue_fields. To retrieve...

Elasticsearch provides various compression techniques to optimize storage and network usage. Here's how to compress an index, source and...

The Elasticsearch data stream is an abstraction layer between the names used by applications to facilitate ingestion and search operations...

In this guide, we will discuss the process of deleting documents in Elasticsearch as well as best practices for deleting documents.

This guide discusses the default document size limit in Elasticsearch, the reasons behind it, and how to handle larger documents effectively.

The 3 main methods in Elasticsearch to calculate the storage size of specific fields in an index are: using the _disk_usage API, creating...

Elasticsearch filtered aliases can help you filter data more efficiently. To create a filtered alias, you need to define the criteria for...

Terms aggregations rely on an internal data structure known as global ordinals. The eager_global_ordinals parameter is used to...

Elasticsearch index patterns allow you to define how to match & interact with multiple indices. The best practices for index pattern usage...

This guide will discuss best practices & performance optimization techniques for inserting documents into Elasticsearch. First, use the API...

The new match_only_text feature in Elasticsearch can save up to 10% of disk space on logging datasets. This field type will set a flat...

Elasticsearch nested aggregation is a powerful technique for analyzing complex data structures that contain nested documents. To use...

This guide focuses on how to handle not indexed fields in Elasticsearch, including use cases, how to configure them, and examples.

Elasticsearch searchable snapshots allow data exploration. They can be controlled with ILM Policies or be manually mounted. To implement...

By using the Elasticsearch Split Index API, an existing index can be split to create a new index with extra primary shards. To do this...

The Elasticsearch sum aggregation allows you to calculate the sum of a numeric field for a set of documents. To implement...

The text analysis process is tasked with two functions: tokenization and normalization and is carried out by employing analyzers. When you...

A tokenizer decides how Elasticsearch will take a set of words and divide it into separated terms called “tokens”. To work with synonyms...

Upsert in Elasticsearch allows you to perform both update and insert actions in a single request. To perform an upsert operation...

Follow these steps to configure all Elasticsearch node role types (master, data, coordinating, ingest, machine learning, remote eligible...

Mappings are the core element of index creation in Elasticsearch. Defining them correctly can improve performance. Mapping types include...

Ingest pipelines sit within the Elasticsearch node and will perform a set of alterations on your data that you...

The join data type field allows users to establish parent-child relationships between documents in Elasticsearch. To use it, you need to...

Elasticsearch has many methods for defining relationships between documents, such as nested documents. To use the nested field type...

Object types in Elasticsearch can be used to define relationships between documents. Here's how to use the object field type for that purpose.

When you have too many shards in your Elasticsearch cluster, there are a few steps you can take in order to reduce the number of shards...

Index lifecycle management helps automate the creation, management & removal of an Elasticsearch index. Define the index lifecycle policy...

Elasticsearch index templates allow us to create indices with user defined configuration. An index can pull the configuration from these...

Nested is a special object type that is indexed as a separate document. To demonstrate the use of Elasticsearch nested VS. object fields...

Here are the similarities and differences between Elasticsearch Snapshot Lifecycle Management (SLM) and OpenSearch Snapshot Management (SM).

The Elasticsearch Transform APIs can be used to turn existing indices into summarized indices. To create a transform API...

There are at least three use cases where you should consider using transforms instead of aggregations in Elasticsearch. First, when the...