How to map between extracted fields

ibrahimsharaf · April 25, 2017, 5:11pm

Hello, I am extracting info from logfiles, but I want to map them together for aggregations, here's a sample logfile:

2017-01-01 07:53:44 [monitor_utils.py] INFO: Crawled iteration for merchant ariika started
2017-01-01 07:53:44 [utils.py] INFO: UpdateCrawlIteration._start_crawl_iteration function took 0.127 s
2017-01-01 07:57:22 [statscollectors.py] INFO: Dumping Scrapy stats:
{'item_scraped_count': 22,
 'invalid_items_count': 84}

I am extracting the merchant name from the first line ariika and items_scraped_counts, invalid_items_count from the last two lines, I have different logfiles for each merchant, and I want to know items scraped count per logfile for each merchant using Kibana.

How to filter between one merchant and another in my case?

ibrahimsharaf · April 25, 2017, 5:25pm

Should I save each merchant logfiles in a separate elasticseach _type? I am using one index for all logfiles.

magnusbaeck · April 26, 2017, 5:21am

Have you looked using the aggregate filter?

Should I save each merchant logfiles in a separate elasticseach _type?

Probably not, but it depends.

ibrahimsharaf · April 26, 2017, 9:32am

No, I didn't, will take a look.
Thanks

system · May 24, 2017, 9:35am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Extracting values from log body Logstash	7	1411	July 6, 2017
Match Field Contents Kibana	3	721	July 6, 2017
Kibana - filtering data between two csv files Elasticsearch	1	419	October 7, 2018
Comparing fields of log files with different index in kibana Elasticsearch	11	2851	August 1, 2017
Visualization between two indexes Kibana	9	10631	March 27, 2017

How to map between extracted fields

Related topics