stackoom
  简体   繁体   中英

How to do a time range search in Kibana

 原文  2015-05-22 12:04:05       elasticsearch/ logstash/ kibana/ kibana-4

Question

We are using the ELK for log aggregation. Is it possible to search for events that occured during a particular time range. Lets say I want to see all exceptions that occurred between 10am and 11am in last month.

Is it possible to extract the time part from @timestamp and do a range search on that somehow (similiar to date() in SQL)?

1 answers

solution1
 6 ACCPTED  2015-05-27 07:49:32

Thanks to Magnus who pointed me to looking at scripted fields. Take a look at: https://www.elastic.co/blog/kibana-4-beta-3-now-more-filtery

or

https://www.elastic.co/guide/en/elasticsearch/reference/1.3/search-request-script-fields.html

Unfortunately you can not use these scripted fields in queries but only in visualisations.

So I resorted to a workaround and use logstashs drop filter to remove the events I don't want to show up in Kibana in the first-place. That is not perfect for obvious reasons but it does the job.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do a keyword search in kibana4 dashboard How do I search for a “-” in a field value in kibana? How do I search an array of objects in Kibana? How do time filter shortcuts work in KIbana? How can I add time range filter in Kibana Discover page? How to make a search with 'OR' condition in Kibana Kibana - how to export search results How to search by meta property in kibana How to search for a nested key in kibana how to process the kibana search result
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM