i am using logstash to forward my apache logs to elasticsearch
one of the query string fields is "tagid=$NUMBER" is parsed properly and
can be searched for..
though when i am visualizing that data on kibana; business people do not
care about numbers and want to be able to read proper names related to
those tags...
the table which matches Tagid2Name is fairly static and hardly ever
changes ...
i am wondering if there's a way for me to visualize that data and replace
the tagid with its proper name.
the table in question is around 200 record in size; the simplest way i
can think of is to use logstash to add field on match but that's not
scalable...
i am using logstash to forward my apache logs to elasticsearch
one of the query string fields is "tagid=$NUMBER" is parsed properly and
can be searched for..
though when i am visualizing that data on kibana; business people do not
care about numbers and want to be able to read proper names related to
those tags...
the table which matches Tagid2Name is fairly static and hardly ever
changes ...
i am wondering if there's a way for me to visualize that data and replace
the tagid with its proper name.
the table in question is around 200 record in size; the simplest way i
can think of is to use logstash to add field on match but that's not
scalable...
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.