Hi there Can I create GELF formatted data streams that contain multi-valued fields? I want to insert data into graylog that contains records where a record has a field that contains multiple values. I need that so I can then search for "field:value1" and will get hits on "field:[value1,value2]" and "field:[value4,value1]" kind of thing
This is supported by ES, but my feeble attempts at the same JSON format within GELF didn't work Conversely, I guess I could do this as a wildcard lookup? ie "field:*value1*" - but then that needs wildcarding on a field and support for left hand wildcards - not good things to have in graylog from a performance perspective? Thanks -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/CAFChrg%2BMi49-xuj3ks8xLJBQnBMwf1MURni66%3D5r73Bh50kfFQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
