Folks, I'm stumped. Here is what I have: NXLOG (gelp out)->Logstash (gelf in)->Elasticsearch->Kibana
This is pushing to a new index ([mynewindex-]-yyyy.mm.dd). Logstash shows it has all the fields parsed in the logs and Elasticsearch has docs listed. Even in In the default Kibana UI for Logstash, I added the index and see the raw data. Comes up fine. When I create a new dashboard, add the index, I can see any of the data. Nothing comes back. I'm totally stumped. I must be missing something..... Thoughts? Chris -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/5436d004-32d1-4d81-b1f5-103a4892a282%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
