I am using Kibana 6.2.2 to visualize DNS traffic, and I want to filter out data with more than 4 answers. However, I can't seem to filter the count of it. I tried using Terms count on the visualization tab, but I can't figure out how to group the answer section per query.
Hey @Alexander_Schutz, are you using nested objects for the "answers" field?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.