Hi there Can I create GELF formatted data streams that contain multi-valued fields? I want to insert data into graylog that contains records where a record has a field that contains multiple values. I need that so I can then search for "field:value1" and will get hits on "field:[value1,value2]" and "field:[value4,value1]" kind of thing
This is supported by ES, but my feeble attempts at the same JSON format within GELF didn't work Conversely, I guess I could do this as a wildcard lookup? ie "field:*value1*" - but then that needs wildcarding on a field and support for left hand wildcards - not good things to have in graylog from a performance perspective? Thanks -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/CAFChrg%2BMi49-xuj3ks8xLJBQnBMwf1MURni66%3D5r73Bh50kfFQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
