Filter to query

paasi6666 · March 4, 2021, 4:46pm

Hello

I've got following Filter option (as an example):

source.ip : "10.10.10.10" and from.domain : "domain.com" or source.ip: "40.40.40.40" and from.domain : "otherdomain.com"

How do I "translate" this filter to an kql query?

paasi6666 · March 4, 2021, 4:47pm

note: I only want one query, not multiple.

wylie · March 4, 2021, 5:10pm

I'm not sure I understand, the filter you have looks like it's already a KQL query. You can read the KQL docs here: Kibana Query Language | Kibana Guide [7.11] | Elastic

paasi6666 · March 5, 2021, 7:20am

My bad.. I want to transform it to an "DSL Query".

wylie · March 5, 2021, 3:37pm

The translated DSL is shown in the Inspect tab under the Request.

Topic		Replies	Views
Use ElasticEearch Query as Filter DSL Query in Discover Section of Kibana Kibana	3	894	September 24, 2019
Kibana maps - add DSL Filter Kibana painless , maps	3	463	July 27, 2022
Is there a converter from a search in kibana to query language? Kibana	2	1660	September 28, 2021
Kibana Query Language (KQL) library to convert KQL to ElasticSearch Query Kibana	4	3252	July 27, 2021
Convert KQL string to Query DSL Kibana kql-kibana-query-language	2	4257	June 22, 2020