Hi guys.
I have webserver-logs and application-logs in Elasticsearch. The webserver-log contains clientIP and SSL-cipher. The application-log contains clientIP and customer-name.
How can I do a visualisation-table showing customers and SSL-ciphers? The key to join on would obviously be clientIP.
Thanks.
You cannot do joins in ES/KB, you need to put the data together when you index things into ES.
What about parent/child relationships etc?
KB doesn't support them for the moment.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.