Kibana not showing data

rmanju2020 · July 24, 2018, 1:38pm

Hi,
I am using Kibana version 4.1.1 and for the time frame of 15 min to 24 hours its not loading the event log data for the hostname, where as if i go beyond 24 hours its listing with yesterdays data.
This behavior is for few host only, not for all.
ES version 1.6.0
The index/_search API is giving data for the host for today's date.Kindly let me know how to trace the issue

lukas · July 24, 2018, 7:08pm

Could you open the developer tools and use the network tab to capture the request that is being sent to Elasticsearch and see how it's different than the manual request you're sending?

rmanju2020 · July 26, 2018, 5:26am

Dear Lukas,
Thanks for the reply.The dev tool is available in the Kibana version above 5.5 .hence i cant use this feature.More over My ES version is 1.6.0 and Kibana 5.5 will not support the lower version of ES.
Any other alternate options??

lukas · July 26, 2018, 10:17pm

Sorry, I meant your browser developer tools, not Kibana's.

rmanju2020 · July 27, 2018, 12:48pm

Here is the first Query for yesterday time frame and its listing the required results:

{
"highlight": {
"pre_tags": [
"@kibana-highlighted-field@"
],
"post_tags": [
"@/kibana-highlighted-field@"
],
"fields": {
"": {}
},
"fragment_size": 2147483647
},
"query": {
"filtered": {
"query": {
"query_string": {
"query": "ComputerName:CORP-STL-DC-01",
"analyze_wildcard": true
}
},
"filter": {
"bool": {
"must": [
{
"range": {
"@timestamp": {
"gte": 1532629800000,
"lte": 1532716199999
}
}
}
],
"must_not": []
}
}
}
},
"size": 0,
"sort": [
{
"@timestamp": {
"order": "desc",
"unmapped_type": "boolean"
}
}
],
"aggs": {
"2": {
"date_histogram": {
"field": "@timestamp",
"interval": "30m",
"pre_zone": "+05:30",
"pre_zone_adjust_large_interval": true,
"min_doc_count": 0,
"extended_bounds": {
"min": 1532629800000,
"max": 1532716199999
}
}
}
},
"fields": [
"",
"_source"
],
"script_fields": {},
"fielddata_fields": [
"TimeWritten",
"DataReadTime",
"@timestamp"
]
}

Here is the second query for Today's time frame and its not listing the required results:
{
"highlight": {
"pre_tags": [
"@kibana-highlighted-field@"
],
"post_tags": [
"@/kibana-highlighted-field@"
],
"fields": {
"": {}
},
"fragment_size": 2147483647
},
"query": {
"filtered": {
"query": {
"query_string": {
"query": "ComputerName:CORP-STL-DC-01",
"analyze_wildcard": true
}
},
"filter": {
"bool": {
"must": [
{
"range": {
"@timestamp": {
"gte": 1532543400000,
"lte": 1532629799999
}
}
}
],
"must_not": []
}
}
}
},
"size": 0,
"sort": [
{
"@timestamp": {
"order": "desc",
"unmapped_type": "boolean"
}
}
],
"aggs": {
"2": {
"date_histogram": {
"field": "@timestamp",
"interval": "30m",
"pre_zone": "+05:30",
"pre_zone_adjust_large_interval": true,
"min_doc_count": 0,
"extended_bounds": {
"min": 1532543400000,
"max": 1532629799999
}
}
}
},
"fields": [
"",
"_source"
],
"script_fields": {},
"fielddata_fields": [
"TimeWritten",
"DataReadTime",
"@timestamp"
]
}

I have used below API and its giving required results on Todays index.:

http://localhost:9200/1_logmon_eventlog-2018_07_27/_search?ComputerName:CORP-STL-DC-01&pretty=true

Let me know any thing else i need to do..

system · August 24, 2018, 12:48pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana not showning data from ES Kibana	8	1353	July 6, 2017
Kibana not showing data due to timestamp issues Kibana	3	1627	July 6, 2017
No new data shown in Kibana Kibana	4	851	June 8, 2017
Kibana is only display logs one hour is discover tab Kibana	3	236	July 6, 2018
Kibana not showing data from Elasticsearch Elasticsearch	5	1476	July 5, 2017

Kibana not showing data

Related topics