Hello good people of the internet,
Firstly I know how FRUSTRATING it is to answer stupid questions regarding technical stuff however I am in charge of SOC for our company and we have just changed from SPLUNK to Kibana 7.
I will be very honest I am kinda lost and depressed as I can not find this information anywhere.
What do I need :
I have a proxy logstash. From this logstash I need to create a visualization(dashboard) of most visited IP addresses . The only thing I know at this moment is the fact the best visualization for that would be data table.
To sum up my questions :
- Is the task I want doable within the Kibana wizard (clicking) or do I have to put together a .json for this?
- On the left side I can only see "bucket" and "metrics" but where do I select the values that I want to be represented in the charts ?? (destination IP, hostname...)
- If you think this is too much questions, please PM me I am able pay if you are willing to discuss Kibana with me.
I wish you good luck in using Kibana to all of you, sorry for this stupid topic I am just feeling completely destroyed by Splunk being replaced.
Have a nice day and thank you for your answers