From the course: Learning the Elastic Stack (2020)
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Kibana Query Language basics - Elastic Stack Tutorial
From the course: Learning the Elastic Stack (2020)
Kibana Query Language basics
- [Instructor] Although the Kibana UI is very powerful, you really need to use text-based queries to get the most from the tool. As I mentioned in the last lesson, we're going to focus on the Kibana query language, which is now the default. This is all very well documented on Elastic's website, so if what I'm saying doesn't quite make sense, take a look at the official documentation. In the UI, we are able to add a filter just by clicking on one of the fields and clicking the plus sign here. We can do the same thing with KQL, and actually the basic syntax is the same. So, let me delete this, and I'll say host:artifacts.elastic.co, and click update. And that'll gimme the same results as if I had done that filter down here. If you're working with numbers instead, you can use the greater than symbol. So, if I wanted to search for bytes that are greater than 5,000, so that is web requests that return a document greater than 5,000 bytes, I can click update here, and it limits the search to…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.