Elasticsearch: CERN Setup Best practices Aggregating data Indices Shards Replicas Fields Keyword Norms Slowlogs Aliases Cluster Organization Anomaly detection and Alarming ElastAlert