Hello,
When i search in kibana with the following expression:
message: ".pdf' to SFTP rejected folder (/in/ORDERS/.rejected)"
I get successfully the results that i want (see image 1)
image 1
But, when i search in kibana with the following (more general) expression:
message: ".pdf' to SFTP * (/in/ORDERS/.rejected)"
I get nothing (see image 2 below)
image2
Why the wildcard character in not working in my search?
Thank you,
Alexandros
Don't know why it does not work. Think it is just not supported.
Try using a filter
{
"wildcard": {
"field_name.keyword": "*search_string*"
}
}
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.