More data return when do one query

bo_bo · July 7, 2020, 11:32am

i want do some queries in elasticsearch
when i do this by kibana, it returns like this:

but when i do queries in console with these sentences:

GET /doujiangv4-2020-07-05/_search/
{
  "query":{
    "bool" : {
      "must": [
        {"match": { "#time": "2020-07-05" }},
        {"match": { "#event_name": "SERVER_HEARTBEAT" }}
      ]
    }
  }
}

i got more pieces:

it's 864, instead of 576 which number appear in kibana
why ?
what would i do if i want the number to be 576

nik9000 · July 7, 2020, 12:08pm

Kibana's discover tab has a button in the upper right to get debug information somewhere in there you can get the query it issued. Sorry I can't be more precise. I dont remember it well.

Anyway, my guess is that the query you made by hand doesn't match the kibana one.

defalt · July 7, 2020, 12:30pm

You can find the query which was executed by kibana here:

Scroll down and you will find something like this:

bo_bo · July 8, 2020, 2:11am

thank you for your answer

bo_bo · July 8, 2020, 2:12am

thank you very much for your help

system · August 5, 2020, 2:12am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
What is SOAP or log size to query data from kibana? Kibana	2	487	September 5, 2019
Different number of documents when querying Kibana vs Elasticsearch Elasticsearch	2	398	April 16, 2018
Different count in Elastic search Elasticsearch	3	619	December 18, 2017
Elasticsearch query - AND doesn't return values (when I know it should) Elasticsearch	1	632	July 5, 2017
Weird Elasticsearch version in kibana (cluster overview) after upgrade to 8 Kibana elastic-stack-monitoring	5	525	March 17, 2022

More data return when do one query

Related topics