ELK (or Elastic Search, Logstash, Kibana) is taking over one of my clients. And I have to admit it's a very handy tool. They are pushing all their logs into it and it's ver easy to search them.
This is a companion discussion topic for the original entry at http://billg.sqlteam.com/2018/06/13/send-sql-server-extended-events-to-logstash-elk/