Dear All,
I am using elasticsearch 1.4.X. Suppose I have below document indexed, lets
say if i search for "priority=2" will it search in entire document as
free-text search?
or it will search only for attribute priority?
{
"date_gmt": "2015-04-15",
"plugin_id": "1001",
"signature": "DELETED SERVER-OTHER HP LoadRunner stack buffer overflow
attempt",
"reliability": "2",
"plugin_sid": "32996",
"category": "null",
"priority": "2",
"src_port": "20345",
"event_id": "1131142910383383630576",
"src_ip": "192.168.1.129",
"cc-report": "null",
"asset": "2",
"sensor": "ccserver-qa-1",
"dst_port": "443",
"username": "NULL",
"vendor": "Sourcefire",
"risk": "0",
"device": "127.0.0.1",
"product_type": "Intrusion Detection",
"_excutetime": "2015-04-15T13:17:13",
"datasource": "Snort",
"fdate": "2015-04-15T12:44:50",
"dst_ip": "10.0.129.234"
}
Kindly shade some light on this, as we are building critical application
using elasticsearch, and need to confirm this point.
--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to elasticsearch+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/elasticsearch/6a446286-2aa6-4627-b0ba-a9fd0e7c12be%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
