Hi,
I am a new to Kibana and my main use is for even analysis reported from different components. My question is on the usage level.
Assume that all the entries has time stamps and a field which represents some events. lets say the events are A,B, C and D. I would like to list down all the C events which happens immediately after D.
Any idea this kind of usage is possible?
thanks
Faisal
From my understanding , I dont think there is a query that corelates each event while searching.
Thus you would want to add a tag or a field to represent that C event consecutively came after D event.
How about using aggregation plugin to corelate the events with logstash before indexing?
Have a look at this thread, which discusses a similar problem.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.