Can somebody help me in knowing how to get the geo.src & geo.dest fields in Sankey Chart creation? I am trying to parse the Apache logs but I want to have Source IP + Destination IP to view the traffic. or you can say that Source Country & Destination Country names.
Using "kibana_sample_data_logs" as an INDEX pattern we are getting these fields. SO what if I want to parse my own Apache logs, then why these fields are not showing there.? Which are required fields to populate the Sankey Chart.
No, i don't want to use the built-in sample logs for this purpose. I want to use my own apache logs for creating Sankey Charts. I want to know how to get these fields geo.src and geo.dest in the logs after parsing.
I only have Source Ip in my logs with other normal information that an apache log have. Can you please help me in knowing how to ingest source-destination documents or geo.src & geo.dest fields in the apache logs?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.