Hi,
I have been able to set up Filebeat, Logstash, ES to read the Apache logs and index it in ES. I, however, want to leverage indexed data to build some sort of analytics.
For instance; how many requests came from a specific IP in last 30 minutes, etc.
Does ES provide some API which we can leverage to query the indexed data?
Saurabh
Why not use Kibana?
I have set up kibana also but will it allow putting logic around logs.
For instance; consider the following use cases:
Also we would like to show a dashboard to our dev ops. team to monitor all these scenarios.
Can we achieve this in kibana?
Saurabh
Yes, that is the whole premise of it 
In Kibana, i see my data under "DISCOVER" option only and that too in a simple raw form, the same way I see it in log files.
My intent is to get more meaninful data and apply aggregation on top of it which I am not sure how to do it.
can you point me to resource or guide me on how to achieve it?
Thanks.
Saurabh
@agrawalsaurabh Hope the following URL will help you to play around with Kibana!
https://www.elastic.co/guide/en/kibana/current/createvis.html#createvis
Have a read of https://www.elastic.co/guide/en/kibana/current/index.html
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.