--logger_plugin=tls --logger_tls_endpoint=/api/v1/osquery/log --logger_tls_period=10 --database_path=/usr/share/osquery/DataBase2

Osquery maintains a rocksdb database. That database_path is actually a directory. The database contains cached events and scheduled query results so differential results can be calculated . In the case of tls logger, which uses buffered_logger, all results get staged in the database before sending to server.

thank you a lot !!!