Hi all,
i'm using ELK to indicize several log from a prod environment.
I need to extract a visualization of any distinct ERROR log for an index. How can i make a visualization and dashboard for it????
Hi @sbampa,
Is there any seperate field for ERROR in the documents? If yes, you can createa Data Table visualization and aggregate the logs based on the Terms in the error field. Else you need to extract it from the log line using painless scripting, create a new field and create aggregation based on that.
Regards 
Hi Suhas...thank you for your reply.
Can you indicate me a guide to implement painless scripting ?
Hi @sbampa,
You can go through this link. It contains a few examples on painless scripting. Hope this helps.
Regards
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.