Does Kibana support searching for term level queries (like prefix) through it's query dsl or do i have to resort to writing plain elasticsearch queries in that case?
Background: Filebeat declares many fields as type keyword. This requires proper search terms for anything else than an exact match.
Hi @tback,
Yeah, I believe Kibana doesn't allow you to set specific term level queries via it's query DSL and I couldn't find anything like that in KQL either (cc @Bargs/@lukas to confirm).
Best,
Oleg
You can create custom filters in the filter bar using any valid ES query, including term level queries like prefix. You can also use wildcards in lucene and KQL to match portions of keyword fields.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.