Hey, guys.
As we are newbies in Kibana, we're stuck in message search. Here is the screenshot of a content of our log files and we need to search all log files that contains message : "reading [more than 20] times".
How could we search for it?
The most efficient way would probably be to extract the count into a separate field based on a grok expression at indexing time. This can be done using Logstash or an ingest node pipeline.
Thanks for the answer. Could you please describe an option with pipeline with more details? would be nice if there would be an example too)
I do not have an example, but it should be easy using a grok filter in Logstash or an ingest pipeline using a grok processor.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.