Is it possible to delete fields from Elasticsearch?

amruth · June 1, 2018, 2:25pm

Hi,

I am ingesting data to elasticsearch using logstash and my indexes are created every month(sample-%{+YYYY.MM}).

sample-2018.04 and sample-2018.05 indexes have unwanted fields(nearly 8000 fields). Now, I've corrected my mistake in sample-2018.06(only 120 fields). But when I search in Index Patterns in Kibana, it still shows 8000 fields. So can someone please say,

If there is a way to delete fields in elasticsearch?
If I delete the old indexes, then I would only see 120 fields?

Having 8000 fields would definitely effect elasticsearch index performance which I am already experiencing. Please shed some light on this issue.

Thanks

tdasch · June 1, 2018, 3:12pm

Amruth,

How did you resolve the problem of getting rid of the unwanted fields?

amruth · June 1, 2018, 5:28pm

So, I am using kv filter without whitelisting the fields and the events somehow have payload in it which got splitted into dynamic key-value pairs. Now, I've included fields to be included as part of kv filter which would only give required fields.

amruth · June 8, 2018, 2:04pm

Any help here is highly appreciated Thanks

system · July 6, 2018, 2:04pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Deleting fields in Elasticsearch Elasticsearch	1	308	August 10, 2018
Remove unwanted Fields From an Index Pattern Elasticsearch	1	1230	December 18, 2017
Clearing index pattern fields Kibana	2	603	December 30, 2021
Delete index pattern names Kibana	2	588	September 21, 2018
Removing fields from existing pattern Kibana	2	572	July 6, 2017

Is it possible to delete fields from Elasticsearch?

Related topics