Elasticsearch search query size limit

sahere37 · August 17, 2020, 4:25pm

Hi all,
I am using elasticsearch input in my logstash config file. logstash input part is as following:

 input {
elasticsearch {
hosts => ["http://10.0.0.1:9200/"]
index => "my-log*"
  query => '{
"from" : 0,
"size" : 1,
		"query": { 
		      "bool" : {
		          "must" : {
		                "match": { "status1": 0 }
		           },
				   "filter" : { 
            "range" : {   "mytimestamp" : { "gte": "now-1d/d", "lte": "now-1d/d"}} 
				   }
		      }
		}
		}'
}

It is expected that the query returns just one event because of size value, but all events will return. how can i handle the number of events which will be returned in query? I just want to elasticsearch return me the one event. Any advise will be so appreciated
Regards

system · September 14, 2020, 4:25pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elasticsearch input plugin size Logstash	8	1391	August 31, 2021
Logstash 5.4 elasticsearch input size not working Logstash	1	465	January 9, 2018
Logstash elasticsearch input, size and schedule params Logstash	1	307	November 12, 2020
Logstash elasticsearch input plugin query size not working Logstash	1	583	June 29, 2020
Logstash-elasticsearch input plugin, size not working as expeted Logstash	2	784	February 11, 2019

Elasticsearch search query size limit

Related Topics