Elasticsearch filter plugin

Pratheek · August 10, 2017, 2:23pm

I tried using query in elasticsearch filter plugin to retrieve events from an existing index.But its throwing up some warning.

My conf for filter is as follows:
elasticsearch {
hosts => ["localhost:9200"]
index => "sample_index"
query => "KeyId:%{[FEED]}"
fields => { "REC_TIME" => "RT" }
}

The error I have been facing is

[2017-08-10T16:12:12,026][WARN ][logstash.filters.elasticsearch] Failed to query elasticsearch for previous event {:index=>"sample_index", :query=>"KeyId:prod07", :event=>2017-06-30T05:00:00.000Z,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, , :error=>#<Elasticsearch::Transport::Transport::Errors::MovedPermanently: [301]

Redirection

Redirect

>}

system · September 7, 2017, 2:23pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Failed to query elasticsearch for previous event Logstash	1	1784	July 6, 2017
ElasticSearch filter plugin "Failed to parse query" Was Expecting TO Logstash	2	573	October 24, 2020
Filter Plugin: Elasticsearch Logstash	7	2211	July 6, 2017
[filter elasticsearch] sort query Logstash	1	926	July 6, 2017
Logstash Elasticsearch filer query to filter data from existing data Logstash	2	215	December 14, 2021

Elasticsearch filter plugin

Redirect

Related Topics