Hi all,
apologies if this has already been covered.
I've just gone through the process of getting a grok match written for a syslog entry which comes from a firewall.
I've got the relevant information being seen as fields on the left, but they are showing a question mark next to them.
Is it a case of waiting for them to be indexed or do I need to do anything?
Thanks
Sounds like you want to refresh the field list via the settings page in Kibana.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.