I am trying to find the different kinds of syntax I can give in regex type of query through kibana, but I was not able to find any information on this. I am running logstash and elasticsearch in the backend. Any answer or example will be helpful.
Asked
Active
Viewed 4.5k times
21
-
That edit doesn't come close to justifying reopening this question. It's way too broad and too vague. Please identify a specific problem or question about coding. Include attempted solutions, an explanation of how the results differ from the desired results, and any error messages you receive. Please read this advice on [ask] good questions and Jon Skeet's blog post [Writing the perfect question](http://msmvps.com/blogs/jon_skeet/archive/2010/08/29/writing-the-perfect-question.aspx). Pay special attention to the "Golden Rule", though I highly advise you to read the entire article. – Adi Inbar Apr 24 '14 at 14:22
1 Answers
12
so any regular expressions are valid in grok as well. The regular expression library is Oniguruma.
I took this from the logstash docs online.
Also from [a Google Groups post]: Kibana is a web interface which stay in front of ElasticSearch: to understand the query syntax you have to know something more about Apache Lucene, which is the text search engine used by ElasticSearch.
Here's a small tutorial about the query styles you can use with Lucene and by inheritance with your Kibana web interface:
http://www.lucenetutorial.com/lucene-query-syntax.html This link is dead, I'm not sure but this might be an adequate replacement. (I've saved it into wayback machine as it keeps dying...)
See also the official Lucene Query Syntax documentation.
GPPK
- 6,546
- 4
- 32
- 57
-
-
-
@darkwing the original link that was cached was still up so i've added it to wayback machine and added that link in instead. – GPPK Feb 09 '18 at 08:13
-