I have the following index:
{
"message" => "Thu Jun 05 08:00:00 2014 RID 978a1861-1401973200416
URL . ",
"@version" => "1",
"@timestamp" => "2014-08-22T15:46:22.729Z",
"host" => "",
"kw" => "Ready Mix Concrete",
"town" => "Zephyrhills",
My server is running of course.
The index is in
../elasticsearch-1.1.1/data/elasticsearch/nodes/1/indices/logstash-2014.08.19/2/index
../elasticsearch-1.1.1/data/elasticsearch/nodes/1/indices/logstash-2014.08.19/3/index
../elasticsearch-1.1.1/data/elasticsearch/nodes/1/indices/logstash-2014.08.19/
This is my health query and result.
http://:9200/_cluster/health?pretty=true
{
"cluster_name" : "elasticsearch",
"status" : "yellow",
"timed_out" : false,
"number_of_nodes" : 1,
"number_of_data_nodes" : 1,
"active_primary_shards" : 10,
"active_shards" : 10,
"relocating_shards" :
Aleks,
none of the queries work.
On Tuesday, August 19, 2014 11:12:03 AM UTC-4, Aleks wrote:
> Hi Vitaly,
>
> Try making the request with lower case "in" :
> http://:9200/_search?q="state:in"
>
> Aleks
>
> On Tuesday, August 19, 2014 3:40:13 PM U
http://www.elasticsearch.org/help/
>
> We can probably help you if we understand what exactly you are doing.
>
> IN could be an english stop word BTW (which is filtered by standard
> analyzer on some elasticsearch versions).
>
> --
> *David Pilato* | *Technical Advocate* | *El
ort for running queries.
>
>
> --
> *David Pilato* | *Technical Advocate* | *Elasticsearch.com*
> @dadoonet <https://twitter.com/dadoonet> | @elasticsearchfr
> <https://twitter.com/elasticsearchfr>
>
>
> Le 19 août 2014 à 15:10:25, vitaly (vitaly@gmail.com )
Using elasticsearch-head I do query
{
"query": {
"term": {
"NONSENSE":"NONSENSE"
}
}
}
The result shows the entire set no matter what I type in "term"
{
- took: 2
- timed_out: false
- _shards: {
- total: 5
- successful: 5
- failed: 0
}
- hits
I use elasticsearch-head.
The query is
{
"query": {
"term": {
"nonsense":"nonsense"
}
}
}
The result does not care about the field and value I search for. It always
gives the entire index.
{
- took: 2
- timed_out: false
- _shards: {
- total: 5
- su
On Monday, August 18, 2014 9:57:41 AM UTC-4, Kevin M wrote:
>
> Could someone help me write a grok filter for this log real quick here is
> what the log looks like:
>
>
> Aug 18 09:40:39 server01 webmin_log: 172.16.16.96 - username
> *[18/Aug/2014:09:40:39
> -0400]* "GET /right.cgi?open=system&
I am using the foollowing config file
filter{
grok{
match=>[
"message",
"(?:\?|\&)C\=%{DATA:kw}\&%{DATA}\sT\s%{DATA:town}\sS\s%{WORD:state}\s%{DATA}%{IP:ip}"
]
}
grok{
match=>[
Hi, on my master node I constantly see in the logs the following messages:
[2014-08-05 12:06:27,763][WARN ][cluster.metadata ] [ark.com.
01.ark74] [ark-profiles-2014-07-09] re-syncing mappings with cluster state
for types [[profiles_v1]]
[2014-08-05 12:06:27,783][WARN ][cluster.metadata
11 matches
Mail list logo
