tigera · ctauchen · May 8, 2026
@@ -1,5 +1,5 @@
 ---
-description: Manage alerts and events for Calico Enterprise features.
+description: Configure alerts and review alert events for Calico Cloud features in the web console or CLI. Use built-in templates for visibility and security signals.
 ---
 
 # Manage alerts

@@ -1,5 +1,5 @@
 ---
-description: Create a custom dashboard
+description: Build custom dashboards in the Calico Cloud web console by importing cards from standard dashboards or constructing new cards from flow, DNS, and L7 fields.
 ---
 
 import Screenshot from '/src/___new___/components/Screenshot'

@@ -1,5 +1,5 @@
 ---
-description: Dashboards help you see what's going on in your cluster. See how your cluster is performing and visualize your system's log data.
+description: Visualize connected cluster activity in the Calico Cloud web console with prebuilt and custom dashboards for cluster health, policy, DNS, and L7 data.
 ---
 
 import Screenshot from '/src/___new___/components/Screenshot'

@@ -1,5 +1,5 @@
 ---
-description: Archive logs to Syslog, Splunk, or Amazon S3 for maintaining compliance data.
+description: Forward Calico Cloud flow, DNS, audit, and L7 logs to Syslog, Splunk, or Amazon S3 to retain compliance data beyond managed retention windows.
 ---
 
 # Archive logs

@@ -1,5 +1,5 @@
 ---
-description: Calico Cloud audit logs provide data on changes to resources.
+description: Calico Cloud audit logs record changes to network policies, tiers, network sets, host endpoints, and other resources across connected clusters.
 ---
 
 # Audit logs

@@ -1,5 +1,5 @@
 ---
-description: Key/value pairs of BGP activity logs and how to construct queries.
+description: Reference of key/value fields in Calico Cloud BGP activity logs in Elasticsearch, with sample queries for IPv4, IPv6, and per-node lookups.
 ---
 
 # BGP logs

@@ -1,5 +1,5 @@
 ---
-description: Key/value pairs of DNS activity logs and how to construct queries.
+description: Reference of key/value fields in Calico Cloud DNS activity logs in Elasticsearch, with guidance for building client and query lookups.
 ---
 
 # Query DNS logs

@@ -1,5 +1,5 @@
 ---
-description: Suppress DNS logs of low significance using filters.
+description: Suppress low-value Calico Cloud DNS log entries with Fluentd filters configured through a ConfigMap in the operator namespace of connected clusters.
 ---
 
 # Filter DNS logs

@@ -1,5 +1,5 @@
 ---
-description: Configure and filter DNS logs.
+description: Configure and filter DNS activity logs for Calico Cloud. Review the schema, build Elasticsearch queries, and trim low-value entries.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure flow log aggregation to reduce log volume and costs.
+description: Tune Calico Cloud flow log aggregation levels to balance managed Elasticsearch volume and cost against pod and IP visibility for allowed and denied traffic.
 ---
 
 # Configure flow log aggregation

@@ -1,5 +1,5 @@
 ---
-description: Data that Calico Cloud sends to Elasticsearch.
+description: Reference of key/value fields that Calico Cloud sends to Elasticsearch for flow logs, including endpoints, actions, byte counts, and policy verdicts.
 ---
 
 # Flow log data types

@@ -1,5 +1,5 @@
 ---
-description: Filter Calico Cloud flow logs.
+description: Filter Calico Cloud flow logs through Fluentd to drop low-significance traffic and reduce managed Elasticsearch volume and cost.
 ---
 
 # Filter flow logs

@@ -1,5 +1,5 @@
 ---
-description: Enable hostendpoint reporting in flow logs.
+description: Turn on host endpoint reporting in Calico Cloud flow logs to gain visibility into traffic at HostEndpoint interfaces on Kubernetes nodes.
 ---
 
 # Enable HostEndpoint reporting in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Configure, filter, and aggregate flow logs.
+description: Configure, filter, and aggregate Calico Cloud flow logs. Add host endpoint, process path, and TCP socket statistics from managed Elasticsearch.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Get visibility into process-level network activity in flow logs.
+description: Add process executable paths and arguments to Calico Cloud flow logs with eBPF kprobe programs for process-level visibility into network activity.
 ---
 
 # Enable process-level information in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Enabling TCP socket stats information in flow logs
+description: Add TCP socket statistics to Calico Cloud flow logs with eBPF programs that capture round-trip time, retransmits, and other per-socket metrics.
 ---
 
 # Enabling TCP socket stats in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Configure logs for visibility in the web console.
+description: Configure managed Elasticsearch logs for Calico Cloud so the web console and Kibana can surface flow, DNS, audit, and L7 data from connected clusters.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure and aggregate L7 logs.
+description: Deploy Envoy and aggregate Calico Cloud L7 logs to monitor HTTP traffic patterns between application workloads on connected clusters.
 ---
 
 # Configure L7 logs

@@ -1,5 +1,5 @@
 ---
-description: L7 data that Calico Cloud sends to Elasticsearch.
+description: Reference of key/value fields that Calico Cloud sends to Elasticsearch for L7 logs, including durations, byte counts, and HTTP request metadata.
 ---
 
 # L7 log data types

@@ -1,5 +1,5 @@
 ---
-description: Configure Elasticsearch L7 logs.
+description: Configure L7 application traffic logs for Calico Cloud. Deploy Envoy, set aggregation, and review the Elasticsearch L7 log schema for connected clusters.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Summary of the out-of-box features for Calico Cloud logs.
+description: Calico Cloud uses managed Elasticsearch and Kibana for flow, DNS, audit, BGP, and L7 logs with workload context, RBAC, and archival to external SIEMs.
 ---
 
 # Overview

@@ -1,5 +1,5 @@
 ---
-description: Use Elasticsearch logs for visibility into all network traffic with Kubernetes context.
+description: Observe and troubleshoot connected clusters with Calico Cloud web console dashboards, Service Graph, packet capture, and managed Elasticsearch logs.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Learn how policy audit mode rules can affect the number of iptables logs.
+description: Reference explaining how Calico Cloud policy audit mode and the Log rule action influence iptables log volume on connected cluster nodes.
 ---
 
 # iptables logs

@@ -1,5 +1,5 @@
 ---
-description: Learn the basics of using Elasticsearch logs and Kibana to gain visibility and troubleshoot.
+description: Use Kibana with Calico Cloud Elasticsearch to explore flow, L7, audit, BGP, DNS, and intrusion detection event logs from connected clusters.
 ---
 
 # Kibana dashboards and logs

@@ -1,5 +1,5 @@
 ---
-description: Enable Kubernetes audit logs on changes to Kubernetes resources.
+description: Turn on Kubernetes API audit logging for Calico Cloud connected clusters so security teams can review changes to pods, namespaces, and network policies.
 ---
 
 # Kubernetes audit logs

@@ -1,5 +1,5 @@
 ---
-description: Capture live traffic for debugging microservices and application interaction.
+description: Capture live pod traffic in Calico Cloud connected clusters from Service Graph or the CLI and export pcap files to Wireshark for analysis.
 ---
 
 # Packet capture

@@ -1,5 +1,5 @@
 ---
-description: Learn the power of network sets.
+description: Visualize cluster traffic to and from external endpoints in Calico Cloud Service Graph with network sets that group external IP ranges by purpose.
 ---
 
 # Visualize traffic to and from a cluster

@@ -1,5 +1,5 @@
 ---
-description: Manage alerts and events for Calico Enterprise features.
+description: Configure alerts and review alert events for Calico Enterprise features from the Manager UI or CLI. Use built-in templates for visibility and security.
 ---
 
 # Manage alerts

@@ -1,5 +1,5 @@
 ---
-description: Dashboards help you see what's going on in your cluster. See how your cluster is performing and visualize your system's log data.
+description: Visualize cluster activity in the Calico Enterprise Manager UI with prebuilt dashboards for cluster health, policy, DNS, and L7 log data.
 ---
 
 import Screenshot from '/src/___new___/components/Screenshot'

@@ -1,5 +1,5 @@
 ---
-description: Archive logs to Syslog, Splunk, or Amazon S3 for maintaining compliance data.
+description: Forward Calico Enterprise flow, DNS, audit, and L7 logs to Syslog, Splunk, or Amazon S3 to retain compliance data beyond in-cluster Elasticsearch retention.
 ---
 
 # Archive logs

@@ -1,5 +1,5 @@
 ---
-description: Calico Enterprise audit logs provide data on changes to resources.
+description: Calico Enterprise audit logs record changes to network policies, tiers, network sets, host endpoints, and other resources for security and compliance review.
 ---
 
 # Audit logs

@@ -1,5 +1,5 @@
 ---
-description: Key/value pairs of BGP activity logs and how to construct queries.
+description: Reference of key/value fields in Calico Enterprise BGP activity logs stored in Elasticsearch, with sample queries for IPv4, IPv6, and per-node lookups.
 ---
 
 # BGP logs

@@ -1,5 +1,5 @@
 ---
-description: Key/value pairs of DNS activity logs and how to construct queries.
+description: Reference of key/value fields in Calico Enterprise DNS activity logs stored in Elasticsearch, with guidance for constructing client and query lookups.
 ---
 
 # Configure DNS logs

@@ -1,5 +1,5 @@
 ---
-description: Suppress DNS logs of low significance using filters.
+description: Suppress low-value Calico Enterprise DNS log entries with Fluentd filters configured through a ConfigMap in the operator namespace.
 ---
 
 # Filter DNS logs

@@ -1,5 +1,5 @@
 ---
-description: Configure and filter DNS logs.
+description: Configure and filter DNS activity logs for Calico Enterprise. Review the schema, build Elasticsearch queries, and trim low-value entries.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure flow log aggregation to reduce log volume and costs.
+description: Tune Calico Enterprise flow log aggregation levels to balance Elasticsearch volume and cost against pod and IP visibility for allowed and denied traffic.
 ---
 
 # Configure flow log aggregation

@@ -1,5 +1,5 @@
 ---
-description: Data that Calico Enterprise sends to Elasticsearch.
+description: Reference of key/value fields that Calico Enterprise sends to Elasticsearch for flow logs, including endpoints, actions, byte counts, and policy verdicts.
 ---
 
 # Flow log data types

@@ -1,5 +1,5 @@
 ---
-description: Filter Calico Enterprise flow logs.
+description: Filter Calico Enterprise flow logs through Fluentd to drop low-significance traffic and reduce in-cluster Elasticsearch volume and cost.
 ---
 
 # Filter flow logs

@@ -1,5 +1,5 @@
 ---
-description: Enable hostendpoint reporting in flow logs.
+description: Turn on host endpoint reporting in Calico Enterprise flow logs to gain visibility into traffic at HostEndpoint interfaces on Kubernetes nodes.
 ---
 
 # Enable HostEndpoint reporting in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Configure, filter, and aggregate flow logs.
+description: Configure, filter, and aggregate Calico Enterprise flow logs. Add host endpoint, process path, and TCP socket statistics from in-cluster Elasticsearch.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Get visibility into process-level network activity in flow logs.
+description: Add process executable paths and arguments to Calico Enterprise flow logs with eBPF kprobe programs for process-level visibility into network activity.
 ---
 
 # Enable process-level information in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Enabling TCP socket stats information in flow logs
+description: Add TCP socket statistics to Calico Enterprise flow logs with eBPF programs that capture round-trip time, retransmits, and other per-socket metrics.
 ---
 
 # Enabling TCP socket stats in flow logs

@@ -1,5 +1,5 @@
 ---
-description: Configure logs for visibility in the web console.
+description: Configure in-cluster Elasticsearch logs for Calico Enterprise so the Manager UI, Kibana, and the Elasticsearch API can surface flow, DNS, audit, and L7 data.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure and aggregate L7 logs.
+description: Deploy Envoy and aggregate Calico Enterprise L7 logs to monitor HTTP traffic patterns between application workloads in self-managed clusters.
 ---
 
 # Configure L7 logs

@@ -1,5 +1,5 @@
 ---
-description: L7 data that Calico Enterprise sends to Elasticsearch.
+description: Reference of key/value fields that Calico Enterprise sends to Elasticsearch for L7 logs, including durations, byte counts, and HTTP request metadata.
 ---
 
 # L7 log data types

@@ -1,5 +1,5 @@
 ---
-description: Configure Elasticsearch L7 logs.
+description: Configure L7 application traffic logs for Calico Enterprise. Deploy Envoy, set aggregation, and review the Elasticsearch L7 log schema.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Summary of the out-of-box features for Calico Enterprise logs.
+description: Calico Enterprise deploys an in-cluster Elasticsearch and Kibana stack for flow, DNS, audit, BGP, and L7 logs with workload context, RBAC, and archival to SIEMs.
 ---
 
 # Overview

@@ -1,5 +1,5 @@
 ---
-description: Configure RBAC to control access to Elasticsearch logs and events.
+description: Set fine-grained Kubernetes RBAC permissions in Calico Enterprise to control access to Elasticsearch flow, audit, DNS, and intrusion detection event indices.
 ---
 
 # Configure RBAC for Elasticsearch logs and events

@@ -1,5 +1,5 @@
 ---
-description: Configure how long to retain logs and compliance reports.
+description: Set retention windows for Calico Enterprise flow, DNS, audit, BGP, L7, snapshot, and compliance report data in the in-cluster LogStorage resource.
 ---
 
 # Configure data retention

@@ -1,5 +1,5 @@
 ---
-description: Learn how to troubleshoot common issues with Elasticsearch.
+description: Troubleshooting guide for in-cluster Elasticsearch problems in Calico Enterprise covering LogStorage, storage classes, persistent volumes, and diagnostic logs.
 ---
 
 # Troubleshoot logs

@@ -1,5 +1,5 @@
 ---
-description: Tour the main features of the web console.
+description: Tour of the Calico Enterprise Manager UI navbar covering dashboards, Service Graph, policies, alerts, Kibana, and packet capture controls.
 ---
 
 # Web console tutorial

@@ -1,5 +1,5 @@
 ---
-description: Use Elasticsearch logs for visibility into all network traffic with Kubernetes context.
+description: Observe and troubleshoot self-managed Calico Enterprise clusters with Manager UI dashboards, Service Graph, packet capture, and Elasticsearch logs.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Learn how policy audit mode rules can affect the number of iptables logs.
+description: Reference explaining how Calico Enterprise policy audit mode and the Log rule action affect iptables log volume on cluster nodes.
 ---
 
 # iptables logs

@@ -1,5 +1,5 @@
 ---
-description: Learn the basics of using Elasticsearch logs and Kibana to gain visibility and troubleshoot.
+description: Use Kibana with Calico Enterprise Elasticsearch to explore flow, L7, audit, BGP, DNS, and intrusion detection event logs across managed clusters.
 ---
 
 # Kibana dashboards and logs

@@ -1,5 +1,5 @@
 ---
-description: Enable Kubernetes audit logs on changes to Kubernetes resources.
+description: Turn on Kubernetes API audit logging for Calico Enterprise so security teams can review changes to pods, namespaces, network policies, and other resources.
 ---
 
 # Kubernetes audit logs

@@ -1,5 +1,5 @@
 ---
-description: Capture live traffic for debugging microservices and application interaction.
+description: Capture live pod traffic in self-managed Calico Enterprise clusters from Service Graph or the CLI and export pcap files to Wireshark for analysis.
 ---
 
 # Packet capture

@@ -1,5 +1,5 @@
 ---
-description: Identify unused network policies and rules to maintain least privilege and reduce compliance risk.
+description: Find unused Calico Enterprise network policies and rules with Last Evaluated timestamps in the Manager UI or with calicoctl to maintain least privilege.
 ---
 
 # Review unused network policies