Hi guys, i got problem to splitting the log message that i store into elasticsearch using filebeat.
This is my log from kibana
i want to split the 'timestamp' and 'info' to single value, and each value of 'message' will be single value too. So i can use it for visualization independently.
Thanks before for your help.
You need to use the Ingest API to split those fields out - https://www.elastic.co/guide/en/elasticsearch/reference/6.4/ingest.html
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.
