I am new to Kibana. Currently App generates events in JSON format, send to Graylog.
We want to move to Kibana. If we search the events, result JSONs should be shown as Table format and as each key as column name.
Is it possible in Kibana? can we query on Table format data again? can we store the query and json be converted as table format in realtime as and when event data reaches Kibana?
hi @ssuresh,
In the Discover app, kibana shows the documents from Elasticsearch in json format. This is the format used to index the documents.
You can see a tabular view by using the Table visualization, in the Visualize app. https://www.elastic.co/guide/en/kibana/current/data-table.html. You can also write queries and filter on the data. Each query is executed in real-time against your Elasticsearch index.
I'd also recommend you walk through the Kibana Getting Started. https://www.elastic.co/guide/en/kibana/current/getting-started.html. It shows you how to create filters and queries, and create visualizations (such as the Data Table).
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.