https://www.digitalocean.com/community/tutorials/elasticsearch-fluentd-and-kibana-open-source-log-search-and-visualization
Elasticsearch, Fluentd, and Kibana (EFK) allow you to collect, index, search, and visualize log data. This is a great alternative to the proprietary software Splunk, which lets you get started for free, but requires a paid license once the data volume increases.
Forwarding rsyslog Traffic to Fluentd
Open /etc/rsyslog.conf (you need to sudo) and add the following line at the top
*.* @127.0.0.1:5140
