hi ,
if any one know if i can and how to receive for the first time a log in logstash filter it then save it in ES , next step is to receive another type of logs filter it then add its fields to the first one saved in ES using an ID or sthing
thanks a lot !!
You can use the update API [1]
This talk [2] gives examples on using scroll and update APIs to efficiently update positions as new log records arrive.
[1] https://www.elastic.co/guide/en/elasticsearch/reference/5.1/docs-update.html
[2] https://www.youtube.com/watch?v=yBf7oeJKH2Y
ok i will see thank you mark nice piste to focus on
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.