I have a series of logs which contain a message field with a string value as seen in the image, line 46:
Is there any way I can parse this field so I can access the info as message.service, message.info, etc?
Not the way you have it stored currently. The string looks like it's all just JSON, if you were to index that data as new fields in Elasticsearch, then you could access, aggregate, and search based on the information.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.