While using elastic search as the input, not able to fetch data using the same index in elastic seach plugin for filter

AtulShukla_281194 · November 29, 2018, 7:46am

Below is my code :
input {
elasticsearch {
hosts => "xxxx"
index => "abcd*"
query=> ' {
"query":{
"range":{
"@timestamp":{
"gte":"2018-11-29T11:54:01.600113354Z",
"lt":"2018-11-29T11:57:01.600113354Z"
}
}
}
}'
}
}
filter {
elasticsearch {
hosts => "xxxx"
index => "abcd*"
query => 'value_needed:"%{value_needed}"'
fields => {
"field1" => "field1"
}
}

: Not able to fetch the field1 value from abcd index. Can someone please help with this.

Eniqmatic · November 29, 2018, 8:14am

Any errors or what is happening? Try removing the "lt" timestamp to see if that helps you get some results at first.

AtulShukla_281194 · November 29, 2018, 9:44am

Hi Lewis,
From the input elastic plugin, I am getting data.

The problem comes when I am trying to open the connection again to the same database.
No error log is generated in logstash.

Topic		Replies	Views
Logstash elasticsearch filter plugin - set index Logstash	2	1630	July 6, 2017
Elasticsearch filter is not working in logstash Logstash	3	1056	March 28, 2017
Elastic filter plugin is not working Logstash	2	875	January 7, 2018
Logstash, query not executing inside of the elasticsearch input plugin Logstash	5	917	February 21, 2023
How we can correlate current event value with stored index value from elasticsearch Logstash	2	343	August 20, 2018

While using elastic search as the input, not able to fetch data using the same index in elastic seach plugin for filter

Related topics