I use Logstash to collect my logs. I store my logs in Elasticsearch. I'm using Kibana in order to search through my logs on Elasticsearch.
Once I find the log entry I'm looking for through Discover, how can I view the adjacent rows in the log? That is, the adjacent rows from the original file? This is useful to figure out what happened before and after that specific message.
Thank you,
I think you're looking for log event context, this is a Github issue we're tracking to make this automated: https://github.com/elastic/kibana/issues/275
Right now I would recommend noting the time interval during which the entry you found occurred, removing the global filter and manually filtering down to the time frame of interest to see other entries in that time window.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.