Substring Search on log message in kibana 4

manopmk · April 4, 2017, 12:49pm

Hi
I want to display only logs which i search substring

for example in my logs have message type as ERROR
if i search error, i want to display only logs which have error not entire log
how to filter in kibana 4

note : in search field i gave "astrikERRORastrik"
but it just highlighting error not filter the result..
can you help me

jbudz · April 4, 2017, 3:54pm

The search bar will filter down a set of documents, but it won't filter sections of individual documents. Is it possible for you to push one document per log line?

I would also recommend looking into something like logstash or elasticsearch ingest node to parse these log lines out into separate fields.

system · May 2, 2017, 3:55pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Filter logs with only DEBUG in them Kibana	3	1157	July 24, 2018
Filter with regex to select lines that contain a certain word type Kibana	3	300	August 17, 2021
Kibana and Elasticsearch - filtering logs Elasticsearch	1	297	July 6, 2017
Histogram based on partial matching in Kibana: field not_analyzed + _all disabled Kibana	6	1716	July 6, 2017
[Kibana] - Add filter using specific regex Kibana	4	4070	April 12, 2019

Substring Search on log message in kibana 4

Related topics