Alibaba Cloud Elasticsearch is suitable for a wide range of scenarios, such as full-text search, log analysis, operation and maintenance (O&M), monitoring, and security analysis.

Full-text search

Elasticsearch provides the full-text search feature, which is suitable for e-commerce commodities, apps, internal information of enterprises, and IT systems.

Assume that you want to run an electronic mall that supports commodity retrieval. In this case, you can use Elasticsearch to store commodity catalogs and inventory data, and provide commodity retrieval and automatic recommendation services for your customers.

Log analysis

In complex business scenarios, various logs are generated, such as Apache logs, system logs, and MySQL logs. In most cases, it is difficult to retrieve valid data from these logs, but you are charged for their storage. Elasticsearch can connect to a variety of common data sources by using Beats and Logstash. It can also use integrated Kibana to efficiently analyze logs in a visualized manner.

O&M and monitoring

If you deploy Docker containers or databases such as MySQL and MongoDB on an Elastic Compute Service (ECS) instance or physical machine, or you work with complex IoT scenarios, you can use Elasticsearch together with Beats, Logstash, or ElasticFlow to collect all logs in a centralized manner in real time and create indexes. Then, use Kibana to flexibly build a visual O&M dashboard based on the collected data. The dashboard displays information such as the hostname, IP address, deployment, and colors that indicate the health status of your ECS instances.

Security analysis

You can use Elasticsearch to analyze and retrieve a large number of historical logs to efficiently audit security. In addition, you can quickly identify real-time events in the system based on the responses from Elasticsearch. This helps you mitigate risks in a timely manner.