Stack Overflow
Stack Overflow

Questions tagged [elastic-stack]

Elastic Stack combines the Elasticsearch, Logstash, Kibana, and the Beats Framework to provide real-time insights of any type of structured or unstructured data.

Elastic Stack combines the , , , and the Beats Framework to provide real-time insights of any type of structured or unstructured data.

In 2015, Elastic introduced the Beats framework (,,) into their stack and decided to rename the ELK Stack to the Elastic Stack

3683 questions
1
vote
1 answer

How to parse a xml-file with logstash filters

I'm trying to index some simple XML-files with elasticsearch and logstash. So far I have the ELK-stack set up, and logstash-forwarder. I am trying to use the documentation to set up a xml filter, but I just cant seem to get it right. My XML format…
oaeide
  • 113
  • 1
  • 6
1
vote
2 answers

How to aggregate fields based particular date in every year in elasticsearch?

I'm having data in my index from 2010 to 2015. I have used following code to get the aggregated first name details in every year from 2010 to 2015, it works as expected POST profile/_search { "size": "0", "aggs": { "count_by_year": { …
Pandiyan Cool
  • 6,381
  • 8
  • 51
  • 87
1
vote
1 answer

Logstash smaller footprint download

I see that the Logstash 1.4.2 tar install via the below curl command is around 140 MB & am wondering if there is a way to get smaller footprint download without the extra baggage of Kibana, ElasticSearch, some filters, inputs,outputs. Is it safe to…
John C
  • 1,795
  • 4
  • 27
  • 42
1
vote
3 answers

How does ELK (Elastichsearch, Logstash, Kibana) work

How are events indexed and stored by Elasticsearch when using ELK (Elastichsearch, Logstash, Kibana) How does Elasticsearch work in ELK
manhhuy
  • 59
  • 1
  • 2
1
vote
1 answer

Combine logs and query in ELK

With ELK (Elasticsearch-Logstash-Kibana) stack, I collect syslog logs from *nix boxes to Logstash and send it to Kibana via Elasticsearch. This is classical one scenario. My syslog log includes normal system events, squid access log, captiveportal…
hakansel
  • 33
  • 8
1
vote
0 answers

Not getting data on kibana UI with elasticSearch/Logstash on Windows using IIS

I'm installing Logstash with elasticSearch on Windows with Kibana UI. I'm using IIS for this. I'm following this tutorial to configure all these on my laptop. I did exactly the same what was shown in the turorial, I have configured ElasticSearch and…
Omar Bahir
  • 1,237
  • 5
  • 20
  • 48
1
vote
2 answers

Kibana search with numbers is not fetching data from elastic search

When I search with numbers in Kibana to get the data from elastic search, I am not getting any results. I have below message stored in elastic search. If I search with 5723243287337 or 234234535, I do not get any results. But if I search with…
Venu
  • 303
  • 6
  • 21
0
votes
0 answers

Add multiple filter in ElastAlert

We have 2 fields in the ElasticSearch api_status = 400 or 200 or 500 api_url = /v1/myapi.com In elastAlert how can I get the filter to fetch if all status=400 that are coming for all events with api_url within 10min are 5% of the total…
Vaibhav
  • 1,154
  • 10
  • 26
0
votes
0 answers

ELK Rate Aggregation after filtering

I want to get metric (count, min, max, avg, sum) called TimeToExecute by week/month after filtering the documents in the index, this query throws this error "reason" : "Found two aggregation type definitions in [agg1]: [filter] and [data]", GET…
user9969157
  • 75
  • 4
  • 14
0
votes
1 answer

How to paginate Aggregation in Elastic Search?

I have a aggergation , ie a AutoComplete Drop down Search. GET org-members /_search { "size": 0, "aggs": { "members": { "terms": { "field": "members.keyword", "size": 1000 } } } } } You rececive all…
Jojo Joseph Kunathucherry
  • 46
  • 3
0
votes
0 answers

Elasticsearch 8.9 version error: [match] unknown token [START_ARRAY] after [query]

I am trying to get my Elasticsearh query to work, but I get this error: org.elasticsearch.common.ParsingException: [match] unknown token [START_ARRAY] after [query] This is my query: { "size": 25, "from": 0, "sort": [ { …
Ajay Takur
  • 6,079
  • 5
  • 39
  • 55
0
votes
1 answer

Can Elastic Search xpack security features be disabled after having had them enabled on a cluster?

I am running a 3 node Elastic Search 8.9 cluster, each on a separate VM, with a Kibana instance, all of them on Centos 7.9. Due to not being able to connect an app to the cluster I've decided to disable xpack and ssl security. As such, my config for…
notmeagain
  • 3
  • 2
0
votes
1 answer

Unable to run elasticsearch.bat file on windows 11

I am getting below error while running elasticsearch.bat on windows cmd. On my env varaiables JAVA_HOME and JRE_HOME has already been set. JAVA_HOME = C:\Program Files\Java\jdk-19 ‪JRE_HOME = C:\Program…
Adil Abdullah
  • 19
  • 6
0
votes
1 answer

i want to create a data table in single visualization in Kibana using 2 index's

I want to create a data table in a single visualization in Kibana that combines data from two different indexes into a single visualization. In Kibana elastic search I want to make a data table visualization using two different index's.enter image…
Jyoti Pandey
  • 3
  • 3
0
votes
0 answers

how to use a customised message instead of showing "No result found" for a table values

In ELK 8.7v Kibana how to use a customised message instead of showing "No result found" for a table values Main Goals : To show the table result if data present ; if there is no data than instead of showing "No result found" its should have some…
Abdul nasir V
  • 1
  • 1
1 2 3
99 100