Re: Multi Field Aggregation

ubset of columns, so this could not be > pre-defined in that way. > > Al > > On 19 October 2014 16:48, Artur Martins > > wrote: > >> I heard that it could be done with a fingerprint, but I don't know how to >> do this. It's in logstash.conf >&g

Re: Multi Field Aggregation

I heard that it could be done with a fingerprint, but I don't know how to do this. It's in logstash.conf Have a look: Fingerprint the 3-tuple of source address, destination address, destination port if [SourceAddress] and [DestinationAddress] { fingerprint { concatenate_sources => true

Re: [ANN] Elasticsearch CSV plugin for formatting search responses as CSV

This is priceless. Thank you. On Wednesday, July 16, 2014 12:23:11 AM UTC+1, Jörg Prante wrote: > > Hi, > > I wrote a little plugin for formatting search responses as CSV (comma > separated values) > > This format is useful for extracting some (or all) fields from ES JSON and > wrap it into a ta

Re: Multi Field Aggregation

Hello, I'm having the exact same problem. Have you managed to find a solution? My thread is here: LINK Thanks On Thursday, October 16, 2014 1:57:35 PM UTC+1, Alastair James wrote: > > Hi there. > > I am trying to c

How to count tuples of 3 variables, sorted

Greetings community, I'm new to elasticsearch, so first of all sorry for my questions being so basic. I developed a flow collector which dumps flows to my elasticsearch server. Right now i use Kibana to perform the Top 10 destination and Top 10 source IPs filters, and such. But the query I'm h