Kibana filtering based on some search term

Darshan_Kamat · March 30, 2021, 6:28am

I am new to Elastic .
I have setup like Filebeat->ES<-Kibana
Data is unformatted with single lines and multiple lines of logs and inserted into ES from Filebeat.
Based on multi line expression new line is inserted into ES successfully.
I need feature like some bookmark with predefined Api names from my logs...for eg api1 api2 .
Once I select api1 and give the search term in lucene kibana should show all the resutls for the API1.
Basically I am too lazy to search with "<< search word>>" AND "<< apiname >>"
in lucene.

Any pointers or tutorial will be really appreciated.

Darshan_Kamat · March 30, 2021, 7:01am

I explored kibana a bit , I think custom label is what i am looking for. But when I save it is not visible like other filters for eg msg,hostname etc.
I am using elastic 7.6

mattkime · April 5, 2021, 3:05pm

Hello @Darshan_Kamat

There's a couple of different ways of doing this. You could use a saved search Save a search | Kibana Guide [7.12] | Elastic . You could try entering the search and simply bookmarking it. You could also create a set of filters than you enable and disable.

Thanks,
Matt

Topic		Replies	Views
Filters in Kibana Kibana	2	396	November 21, 2017
Using strings for Kibana search? Kibana	7	1359	March 29, 2018
Filter for custom plugin Kibana	2	237	August 5, 2019
Kibana: show logs with a specifc field name value only Kibana docker	3	648	April 18, 2021
Search using Kibana filter bar Kibana	8	550	June 6, 2018

Kibana filtering based on some search term

Related topics