我是ELK Stack的新手,我已经安装(ElasticSearch 7.2.0,Logstash 7.2.0,Kibana 7.2.0)并尝试编写查询。
我的问题: 如何编写查询以显示所有来自索引1
的pop_abc> 10的pop_abc我的数据:
"_source": {
"data_receiver": "2019-06-27T11:27:54+02:00",
"pop": {
"pop_abc": {
"abc": [
13,
11995 <- index 1
],
"def": [
86,
2596
]
}
},
"name": "myname",
"name_client": "myname_client"
},
"fields": {
"data_receiver": [
"2019-06-27T09:27:54.000Z"
]
}
}