Hello,

I'm using logtash + ES for storing logs

After I've updated ES to 1.2.1, I discovered strange behavior of searches.

@source_host:mta01.domain1.com:

shows msgs not only mta01.domains.com, but also from other hosts and domains
@source_host:mta01.domain1.com (759) count per 30s | (759 hits)

still it shows not all messages, because search for '*' show (9695 hits)

Searching for @source_host:.domain1.com* show 0 hits

yum list installed | grep 'search'

elasticsearch.noarch 1.2.1-1 @elastic

============

I recovered old version of ES:

yum list installed | egrep 'search|logstash'

elasticsearch.noarch 1.1.2-1 @elastic-1.1
logstash.noarch 1.4.1-1_bd507eb @logstash-1.4

and tested on the same time division

@source_host:mta01.domain1.com:

shows msgs not only mta01.domains.com, but also from other hosts and domais
@source_host:mta01.domain1.com (31) count per 30s | (31 hits)

Searching of @source_host:.domain1.com: *gives 1116 hits and
different hosts from domain1.com in output

Have I found a bug?

Can anyone reproduce that?

/Oleksandr

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/a63cac92-d544-4a2a-ae26-da945e403e3a%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.