Cortex XSOAR: Reducing Elasticsearch Latency

Cortex XSOAR: Reducing Elasticsearch Latency

2386
Created On 02/23/22 21:51 PM - Last Modified 08/02/23 10:48 AM


Symptom


Slow UI performance with an Elasticsearch deployment. An alert displays on the System Diagnostics page.

Environment


  • Cortex XSOAR
  • Versions 6.1, 6.2, 6.5, 6.6, 6.8, 6.9, 6.10

Cause


Latency above 10 ms between components in an Elasticsearch deployment.

Resolution


  1. Determine which component(s) are surpassing the maximum latency and take steps to reduce latency.
  2. If components are in a different region or network, consider reducing latency by moving components to the same network.

Additional Information


Note: Customers choose their own versions/vendors for Elasticsearch deployment. Palo Alto Support do not provide support for the actual Elasticsearch deployment. The article just points to the things that can be checked
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004NKDCA2&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail