Hi,
For now i am using the filebeat and winlogbeat agents to collect data, which collects events in different indexes (indicies?).
I i want to combine searches from both sources to find a correlation when troubleshooting a problem? How do i do this? When i search i have to specify the index.
You can create dashboards with visualisations from across different index patterns.
Does that help?
If that is the way to do it, i guess that will help.
Is there any other way? If not, thanks
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.