elastic
diff --git a/‎docs/_config.yml
+4 b/‎docs/_config.yml
+4
diff --git a/‎docs/_edot-collector/config/customize-data-ingestion.md
+11 b/‎docs/_edot-collector/config/customize-data-ingestion.md
+11
diff --git a/‎docs/_edot-collector/config/customize-logs-collection.md
+89 b/‎docs/_edot-collector/config/customize-logs-collection.md
+89
diff --git a/‎docs/_edot-collector/config/customize-metrics-collection.md
+10 b/‎docs/_edot-collector/config/customize-metrics-collection.md
+10
diff --git a/‎docs/_edot-collector/config/default-config-k8s.md
+226 b/‎docs/_edot-collector/config/default-config-k8s.md
+226
@@ -75,3 +75,7 @@ edot_versions:
 
 exclude:
   - "gen_edot_col_components/"
+
+mermaid:
+  # Version of mermaid library
+  version: "11.5.0"
@@ -0,0 +1,11 @@
+---
+title: Customize Data Ingestion
+parent: Configuration
+layout: default
+nav_order: 5
+---
+
+🚧 Coming soon
+
+- data routing (example split data by K8s namespace into different data streams)
+- ECS mode (though not officially supported)
@@ -0,0 +1,89 @@
+---
+title: Customize Logs
+parent: Configuration
+layout: default
+nav_order: 3
+---
+
+# Customize Logs Collection
+
+🚧 Coming soon
+
+## Pre-processing Logs
+
+- limitation: (as of 9.0) Elasticsearch Ingest Pipelinges are not (yet) applicable to OTel-native data
+- pre-processing of logs needs to happen in OTel collectors
+
+### Parsing JSON logs
+
+```yaml
+# ...
+receivers:
+  filelog:
+    # ...
+    operators:
+      # Parse body as JSON https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/main/pkg/stanza/docs/operators/json_parser.md
+      - type: json_parser
+        on_error: send_quiet
+        parse_from: body
+        parse_to: body
+
+    # ...
+``` 
+
+### Setting custom fields
+
+## Customizing logs parsing on Kubernetes
+
+TODO: use K8s pods annotation to configure logs parsing, link Blog post
+
+Daemonset collector config:
+
+```yaml
+receivers:
+  receiver_creator/logs:
+    watch_observers: [k8s_observer]
+    discovery:
+      enabled: true
+    receivers:
+
+# ...
+
+extensions:
+  k8s_observer:
+
+# ...
+
+service:
+  extensions: [k8s_observer]
+  pipelines:
+```
+
+- Make sure to remove / comment out the static file log receiver (or restrict the log file pattern) to avoid log duplication
+
+Annotation of the pod
+
+```yaml
+# ...
+metadata:
+  annotations:
+  io.opentelemetry.discovery.logs/enabled: "true"
+  io.opentelemetry.discovery.logs/config: |
+    operators:
+      - id: container-parser
+        type: container
+      - id: json-parser
+        type: json_parser
+        on_error: send_quiet
+        parse_from: body
+        parse_to: body
+      - id: custom-value
+        type: add
+        field: attributes.tag
+        value: custom-value
+spec:
+    containers:
+    # ...
+```
+
+## Using Processors / OTTL for Logs processing
@@ -0,0 +1,10 @@
+---
+title: Customize Metrics
+parent: Configuration
+layout: default
+nav_order: 4
+---
+
+# Customize Metrics Collection
+
+🚧 Coming soon
@@ -0,0 +1,226 @@
+---
+title: Default Config—Kubernetes
+parent: Configuration
+layout: default
+nav_order: 2
+---
+
+# Default Configuration - EDOT Collectors on Kubernetes
+{: .no_toc }
+
+The [Kubernetes setup](../../quickstart/index) utilizes the OpenTelemetry Operator to automate orchestration of EDOT Collectors:
+ 
+* [EDOT Collector Cluster](#cluster-collector): Collection of cluster metrics.
+* [EDOT Collector Daemon](#daemonset-collector): Collection of node metrics, logs and application telemetry.
+* [EDOT Collector Gateway](#gateway-collectors): Pre-processing, aggregation and ingestion of data into Elastic.
+
+<table>
+    <thead>
+        <tr>
+            <td>Direct ingestion into Elasticsearch</td>
+            <td>Managed OTLP Endpoint</td>
+        </tr>
+    </thead>
+    <tbody>
+        <tr>
+            <td>
+                <pre class="mermaid">
+                    flowchart LR
+                        cluster@{ shape: proc, label: "Cluster
+                        Collector
+                        fa:fa-microchip"} -->|otlp| gateway@{ shape: procs, label: "Gateway
+                        Collectors
+                        fa:fa-microchip"}
+
+                        daemon@{ shape: procs, label: "Daemonset
+                        Collectors
+                        fa:fa-microchip"} -->|otlp| gateway
+
+                        gateway ==>|_bulk| es@{ shape: db, label: "Elasticsearch" }
+
+                        style es stroke:#33f,stroke-width:2px,color:#000;
+                </pre>
+            </td>
+            <td>
+                <pre class="mermaid">
+                    flowchart LR
+                        cluster@{ shape: proc, label: "Cluster
+                        Collector
+                        fa:fa-microchip"} -->|otlp| gateway@{ shape: procs, label: "Gateway
+                        Collectors
+                        fa:fa-microchip"}
+
+                        daemon@{ shape: procs, label: "Daemonset
+                        Collectors
+                        fa:fa-microchip"} -->|otlp| gateway
+
+                        gateway ==>|otlp| otlp@{ shape: display, label: "Managed
+                        OTLP endpoint" }
+
+                        style otlp stroke:#33f,stroke-width:2px,color:#000;
+                </pre>
+            </td>
+        </tr>
+    </tbody>
+</table>
+
+The following sections describe the default pipelines for the different roles of EDOT collectors in a Kubernetes setup.
+
+- TOC
+{:toc}
+
+## Pipeline - Cluster Collector
+
+```mermaid
+flowchart LR
+    k8s_cluster@{ shape: proc, label: "k8s_cluster
+    fa:fa-right-to-bracket"} -->|M| k8sattributes@{ shape: proc, label: "k8sattributes
+    fa:fa-gears"}
+
+    k8sattributes -->|M| resourcedetection@{ shape: procs, label: "resourcedetection
+    fa:fa-gears"}
+
+    k8sobjects@{ shape: proc, label: "k8sobjects
+    fa:fa-right-to-bracket"} -->|L| resourcedetection
+
+    resourcedetection -->|L/M| resource@{ shape: procs, label: "resource
+    fa:fa-gears"}
+
+    resource -->|L/M| otlp_exporter@{ shape: proc, label: "OTLP
+    fa:fa-right-from-bracket"}
+```
+
+The main purpose of the `Cluster Collector` is to collect Kubernetes cluster-level metrics (using the [`k8s_cluster`] receiver) and cluster events ([`k8sobjects`] receiver) and forward them to the Gateway Collector through `OTLP`. The [`resource`] and [`resourcedetection`] processors enrich the cluster-level data with corresponding meta information.
+
+
+## Pipeline - Daemonset Collectors
+
+```mermaid
+flowchart LR
+    otlp@{ shape: proc, label: "OTLP
+    fa:fa-right-to-bracket"} -->|T/L/M| batch@{ shape: proc, label: "batch
+    fa:fa-gears"}
+
+    batch -->|T/L/M| resource@{ shape: proc, label: "resource
+    fa:fa-right-from-bracket"}
+
+    resource -->|T/L/M| otlp_exporter@{ shape: proc, label: "OTLP
+    fa:fa-right-from-bracket"}
+
+%% logs pipeline
+    filelog@{ shape: proc, label: "filelog
+    fa:fa-right-to-bracket"} -->|L| batch_lm@{ shape: proc, label: "batch
+    fa:fa-gears"}
+
+    batch_lm -->|L/M| k8sattributes@{ shape: proc, label: "k8sattributes
+    fa:fa-gears"}
+
+    k8sattributes -->|L/M| resourcedetection@{ shape: procs, label: "resourcedetection
+    fa:fa-gears"}
+
+    resourcedetection -->|L/M| resource@{ shape: procs, label: "resource
+    fa:fa-gears"}
+
+    resource -->|L/M| otlp_exporter
+
+%% system metrics pipeline
+    kubletstats@{ shape: proc, label: "kubletstats
+    fa:fa-right-to-bracket"} -->|M| batch_lm
+    hostmetrics@{ shape: proc, label: "hostmetrics
+    fa:fa-right-to-bracket"} -->|M| batch_lm
+```
+
+The `Daemonset Collectors` gather telemetry associated with corresponding, individual Kubernetes nodes:
+
+1. *Host metrics and container logs*
+
+    [`filelog`] and [`hostmetrics`] receivers are used to gather container logs and host metrics, respectively.
+    The [`kubletstats`] receiver collects additional Kubernetes Node, Pod and Container metrics.
+    The logs and metrics are batched for better performance ([`batch`] processor) and then enriched with meta information using the
+    [`k8sattributes`], [`resourcedetection`] and [`resource`] processors.
+
+2. *Application teleemtry through OTLP from OTel SDKs*
+
+    The `Daemonset Collectors` also receive the application telemetry from OTel SDKs that instrument services / pods running on
+    corresponding Kubernetes nodes. The Daemonset Collectors receive that data through [`OTLP`], batch the data ([`batch`] processor)
+    and pass it on to the Gateway Collector through the OTLP exporter.
+
+## Pipeline - Gateway Collectors
+
+The `Gateway Collectors` pipelines differ fundamentally between the two different deployment use cases *'Direct ingestion into Elasticsearch'*
+and using Elastic's *'Managed OTLP Endpoint'*.
+
+### Direct ingestion into Elasticsearch
+
+In *self-managed* and *Elastic Cloud Hosted* Stack deployment use cases the main purpose of the `Gateway Collector` is the central enrichment of data
+before the OpenTelemetry data is being ingested directly into Elasticsearch using the [`elasticsearch`] exporter.
+
+```mermaid
+flowchart LR
+    otlp@{ shape: proc, label: "OTLP
+    fa:fa-right-to-bracket"} -->|T/L| batch@{ shape: proc, label: "batch
+    fa:fa-gears"}
+    batch -->|T| elastictrace@{ shape: proc, label: "elastictrace
+    fa:fa-gears"}
+    elastictrace -->|T| es_exporter@{ shape: proc, label: "elasticsearch
+    fa:fa-right-from-bracket"}
+    es_exporter -->|otel| otel@{ shape: framed-circle, label: "otel" }
+    elastictrace -->|T| elasticapm@{ shape: hex, label: "elasticapm
+    fa:fa-link"}
+    elasticapm -->|M| es_exporter
+
+    batch -->|L| elasticapm
+
+    otlp -->|M| routing@{ shape: hex, label: "routing
+    fa:fa-link"}
+    routing -->|M| batch
+    batch -->|L/M| es_exporter
+
+    routing -->|"M (infra)"| elasticinframetrics@{ shape: proc, label: "elasticinframetrics
+    fa:fa-gears"}
+    elasticinframetrics -->|M| attributes@{ shape: proc, label: "attributes
+    fa:fa-gears"}
+    attributes -->|M| resource@{ shape: proc, label: "resource
+    fa:fa-gears"}
+    resource -->|M| batch_ecs@{ shape: proc, label: "batch
+    fa:fa-gears"}
+    batch_ecs -->|M| es_exporter_ecs@{ shape: proc, label: "elasticsearch
+    fa:fa-right-from-bracket"}
+    es_exporter_ecs -->|ecs| ecs@{ shape: framed-circle, label: "ecs" }
+```
+
+Hence, this Gateway Collector configuration comprises the pipelines for data enrichment of [application telemetry](./default-config-standalone#application--traces-collection-pipeline) and [host metrics](./default-config-standalone#host-metrics-collection-pipeline) (for details, refer to the linked descriptions of the corresponding standalone use cases).
+
+The [`routing`] connector separates the infrastructure metrics from other metrics and routes them into the ECS-based pipeline, with ECS-compatibility exporter mode.
+Other metrics are exported in OTel-native format to Elasticsearch.
+
+### Managed OTLP Endpoint
+
+With the managed OTLP Endpoint, the Gateway Collector configuration simply pipes all the data from the [`OTLP`] receiver through a [`batch`] processor before the data is being exported through `OTLP` to the managed endpoint.
+
+```mermaid
+flowchart LR
+    otlp@{ shape: proc, label: "OTLP
+    fa:fa-right-to-bracket"} -->|T/L/M| batch@{ shape: proc, label: "batch
+    fa:fa-gears"}
+    batch -->|T/L/M| otlp_exporter@{ shape: proc, label: "OTLP
+    fa:fa-right-from-bracket"}
+```
+
+With this scenario there's no need to do any Elastic-specific enrichment in your Kubernetes cluster, as all of that happens behind the managed OTLP endpoint.
+
+[`hostmetrics`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/hostmetricsreceiver
+[`elasticsearch`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/exporter/elasticsearchexporter
+[`elasticinframetrics`]: https://github.com/elastic/opentelemetry-collector-components/tree/main/processor/elasticinframetricsprocessor
+[`elasticsearch`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/exporter/elasticsearchexporter
+[`k8s_cluster`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/k8sclusterreceiver
+[`k8sobjects`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/k8sobjectsreceiver
+[`resource`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/processor/resourceprocessor
+[`k8sattributes`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/processor/k8sattributesprocessor
+[`resourcedetection`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/processor/resourcedetectionprocessor
+[`filelog`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/filelogreceiver
+[`hostmetrics`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/hostmetricsreceiver
+[`kubletstats`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/receiver/kubletstatsreceiver
+[`batch`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/processor/batchprocessor
+[`OTLP`]: https://github.com/open-telemetry/opentelemetry-collector/tree/main/receiver/otlpreceiver
+[`routing`]: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/connector/routingconnector