What Grafana version and what operating system are you using? Grafana v10.4.2 What are you trying to achieve? Currently connected to elasticsearch data source. I want to create a table by using the logs but I want to limit the columns shown. How are you trying to achieve it? I tried 2 approahes: Transfrom data (for tables). >> Organize fields by name >>Hide each of the fields except for the ones I want to display Override, using regex: ^(?!@source_timestamp$|event_severity$|label$).+$ This kinda works so it hides everything except for the values in the parenthesis Lucene ..read more

Hello all, maybe someone can help me with my question: What Grafana version and what operating system are you using? Grafana 10.4.1 with Elasticsearch 8.13.2 (I downloaded the newest versions from both) a few weeks ago) I use Filebeat to process the data into elasticsearch from my log lines with the dissect processor. What are you trying to achieve? I have a log file which tracks some proccesses. Let’s say there are log lines like 23/05/2024 3:12:22,222 ProcessName=“StartReading” 123456789 (…more log lines…) 23/05/2024 3:12:30,123 ProcessName=“StartReading” 444455555 (…more log lines…) 23 ..read more

Grafana version: 10.3.3 I want to get fields from elasticsearch logs in body of emails alerts grafana. Specifically, a “Message” field in logs generated by elasticsearch. I am trying to get this in alert emails similar to other fields such as hostname, hostip etc. Logs has details like this:- Message: “error in system” I have a elasticsearch data source configured. While creating an email alert, I m using lucene query to capture the logs. While adding “message” as one of the terms, the query returns no data. I understand that group by won’t work with message field. Is there any way we can achi ..read more

What Grafana version and what operating system are you using? Grafana v9.5.2 What are you trying to achieve? Trying to build a dashboard for ELK metrics How are you trying to achieve it? Successfully Elasticsearch Data source has been added. What happened? Need more reference for ELK dashboard creation. What did you expect to happen? Any reference dashboard ID in public forum eg:3662 Can you copy/paste the configuration(s) that you are having problems with? Did you receive any errors in the Grafana UI or in related logs? If so, please tell us exactly what they were. Did you fol ..read more

Hi everyone, I’m new to Elasticsearch (stack) and also using query on Grafana, I trying to track the logs coming in from Elasticsearch based on this set of CSV data. Filename,ExpStartTime,ExpEndTime FalsePositive,10:00,10:30 CustFile,11:00,11:15 Exchg_Rate,22:00,22:15 For example, I want to capture is there a file named like “CustFile” within the time period of 11:00 to 11:15, and adding another row to indicate if the the come in time the flag as “Ok” else flag as “failed” I not sure how to do it, should I use dashboard variable to keep the csv data and then use the variable in the query or u ..read more

What Grafana version and what operating system are you using? Grafana version - v9.3.8 OpenSearch version - 2.3.0 What are you trying to achieve? Adding new datasource How are you trying to achieve it? From UI What happened? “Elasticsearch error: 404 page not found” when save/test new datasource What did you expect to happen? No errors Can you copy/paste the configuration(s) that you are having problems with? Did you receive any errors in the Grafana UI or in related logs? If so, please tell us exactly what they were. Error in UI: “Elasticsearch error: 404 page not found” In ..read more

Hello, I’m currently using Grafana version 10.1.0 and have encountered a problem while trying to integrate my Elasticsearch datasource. Despite the presence of the @timestamp field within my Elasticsearch indices, Grafana displays the error: “No date field named @timestamp found.” I have confirmed through Elasticsearch that the @timestamp field does indeed exist within my indices. Despite attempts to address the issue, such as modifying the field name to remove the ‘@’ symbol, the problem persists. It’s important to note that Grafana is able to connect to the Elasticsearch URL, indicating that ..read more

Good day! I would like to as for an assistance regarding the grafana and elastic configuration. I’m getting an error “An error occurred within the Plugin” Elastic is accessible thru browser Elastic is running Index name is filebeat-* Elastic Version 8.5.2 Grafana Version v10.3.1 1 post - 1 participant Read full topic ..read more

What Grafana version and what operating system are you using? grafana v8.5.13 elastic 8.9.1 What are you trying to achieve? separate data per environments Choose environment which I want from combo box What happened? metrics are sum up. I want divide metrics per enviroment What did you expect to happen? I have one elasticsearch datasource → logging. I sent to this instance metrics from prod, and staging elasticsearch instance. 2 posts - 2 participants Read full topic ..read more

I am using Grafana with Elastic as Data Source. I have logs of the format given below: uetr:: null##18:55:54#O#-#-#-#APIServices#-#60#-##POST//rcb-api/rcb/api/v1/payment-transactions/ null I want to extract the number after string ‘APIServices#-#’ (60 in this case) and use this number in my panel to build a time-series graph. How do I do this? The metric I am using is Raw Data. Using the right regular expression also does not work for me. ( Used this query : message: #O#-#-#-#APIServices#-#([0-9]+)# ) This is because the field used in the time series graph is different. The field I want is ‘me ..read more