Hey Everyone
i have been working on our ELK stack the last week and since this past weekend this error has started popping up in my logstash logs and i honestly have no idea what is causing it.
[2019-04-01T13:47:28,143][WARN ][logstash.outputs.elasticsearch] Could not index event to Elasticsearch. {:status=>400, :action=>["index", {:_id=>nil, :_index=>"elastiflow-3.4.1-2019.04.01", :_type=>"doc", :routing=>nil}, #<LogStash::Event:0x3b29ce99>], :response=>{"index"=>{"_index"=>"elastiflow-3.4.1-2019.04.01", "_type"=>"doc", "_id"=>"qSoD2mkBeqaFu40MXzHw", "status"=>400, "error"=>{"type"=>"mapper_parsing_exception", "reason"=>"failed to parse field [flow.packets] of type [long]", "caused_by"=>{"type"=>"json_parse_exception", "reason"=>"Numeric value (9445648006253120079) out of range of long (-9223372036854775808 - 9223372036854775807)\n at [Source: org.elasticsearch.common.bytes.BytesReference$MarkSupportingStreamInputWrapper@e681dd7; line: 1, column: 676]"}}}}}
i can see that the error is telling me what the problem is, but my searching has not given me much information on how to deal with it or what exactly is causing it.
i appreciate any help that can be given.