We have log documents that contain IP addresses and this data is already saved in an Elastic index. Can we make use of a custom analyzer to take the IP Address and let us get the geographical data from the IP addresses?
I know there's a geoip filter in Logstash, but our data is already in Elastic. How do we create the lat and lng points from our pre-existing ip addresses?
Thanks!
You can define an ingest pipeline with a geoip processor and call this pipeline from the reindex API.
As you need to reindex.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.