Elasticsearch Ingest Processors

Alexander Reelsen

October 30, 2018

230

Elasticsearch Ingest Processors

A BoF session held at the elastic on tour event in Frankfurt in October 2018.

Alexander Reelsen

October 30, 2018

Tweet

More Decks by Alexander Reelsen

See All by Alexander Reelsen

Elasticsearch: From Keyword Search To Data Science

0

150

Evolving Search at an ecommerce marketplace

0

170

The new generation of data stores

0

260

Search Evolution - Keeping up with the hype?

0

380

Mirror mirror... what am I typing next?

0

470

The New Generation of Data Stores

0

240

Elasticsearch: Distributed Search Under the Hood

0

170

Working distributed - but how?

0

210

Implementing a custom aws lambda runtime using Crystal

0

760

Other Decks in Technology

See All in Technology

LLM開発を支えるエヌビディアの生成AIエコシステム

acceleratedmu3n

0

350

風が吹けばWHOISが使えなくなる～なぜWHOIS・RDAPはサーバー証明書のメール認証に使えなくなったのか～

orangemorishita

8

1.6k

From Live Coding to Vibe Coding with Firebase Studio

firebasethailand

1

330

【Λ（らむだ）】最近のアプデ情報 / RPALT20250729

0

170

モバイルゲームの開発を支える基盤の歩み～再現性のある開発ラインを量産する秘訣～

0

920

完璧を目指さない小さく始める信頼性向上

PRO

0

130

AI エンジニアの立場からみた、AI コーディング時代の開発の品質向上の取り組みと妄想

8

620

興味の胞子を育て業務と技術に広がる”きのこ力”

0

440

Vision Language Modelと自動運転AIの最前線_20250730

2

890

オブザーバビリティプラットフォーム開発におけるオブザーバビリティとの向き合い / Hatena Engineer Seminar #34 オブザーバビリティの実現と運用編

0

200

【CEDEC2025】ブランド力アップのためのコンテンツマーケティング～ゲーム会社における情報資産の活かし方～

PRO

0

150

【CEDEC2025】『Shadowverse: Worlds Beyond』二度目のDCG開発でゲームをリデザインする～遊びやすさと競技性の両立～

PRO

1

160

Featured

See All Featured

Intergalactic Javascript Robots from Outer Space

272

27k

Practical Tips for Bootstrapping Information Extraction Pipelines

PRO

21

1.4k

The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024

26

2.9k

10 Git Anti Patterns You Should be Aware of

PRO

656

60k

Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]

8

400

Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything

31

2.4k

Helping Users Find Their Own Way: Creating Modern Search Experiences

29

2.8k

For a Future-Friendly Web

179

9.8k

Thoughts on Productivity

69

4.8k

455

43k

Optimizing for Happiness

379

70k

Dealing with People You Can't Stand - Big Design 2015

367

26k

Transcript

Alexander Reelsen [email protected] @spinscale Elasticsearch Ingest Processors Luca Wintergerst [email protected]
@LucaWintergerst
‣ Update ‣ Writing your own processors ‣ Use-Cases ‣
Discussion Agenda
Update
‣ bytes (convert to human readable bytes) ‣ dissect (grok
without regexes, much faster) ‣ pipeline processor, referring to other pipelines New processors
‣ - drop processor to fully drop an event ‣
"drop" : { "if": "ctx.foo == 'bar'" } ‣ - scripting can invoke other processors ‣ "ctx.target_field = Processors.bytes(ctx.source_field)" ‣ if in every processor using scripting New processors
‣ performance bump in geoip processor ‣ per processor metrics
‣ index default pipeline: ‣ settings.index.default_pipeline: "my_pipeline" Others
‣ Aligning dissect filters in logstash/beats/ES ‣ https://github.com/elastic/dissect-specification ‣ UI
Future
Writing your own
‣ https://github.com/spinscale/cookiecutter-elasticsearch-ingest-processor ‣ https://github.com/spinscale/elasticsearch-ingest-langdetect ‣ https://github.com/spinscale/elasticsearch-ingest-opennlp Write your own ingest
plugin
Use-Cases
… ask all the things! Discussion