Elasticsearch Ingest Processors

A BoF session held at the elastic on tour event in Frankfurt in October 2018.

Alexander Reelsen

October 30, 2018

Tweet

More Decks by Alexander Reelsen

See All by Alexander Reelsen

Understanding Apache Lucene - More than just full-text search

0

53

Elasticsearch: From Keyword Search To Data Science

0

200

Evolving Search at an ecommerce marketplace

0

240

The new generation of data stores

0

290

Search Evolution - Keeping up with the hype?

0

420

Mirror mirror... what am I typing next?

0

510

The New Generation of Data Stores

0

280

Elasticsearch: Distributed Search Under the Hood

0

180

Working distributed - but how?

0

240

Other Decks in Technology

See All in Technology

AIエージェント・エコノミーの幕開け〜オープンプロトコルが変えるビジネスの未来〜

0

100

Shifting from MCP to Skills / ベストプラクティスの変遷を辿る

4

500

GitLab Duo Agent Platform + Local LLMサービングで幸せになりたい

0

150

Introduction to Sansan for Engineers / エンジニア向け会社紹介

PRO

6

72k

DX Improvement at Scale

3

300

Oracle Database@Azure：サービス概要のご紹介

oracle4engineer

PRO

4

1.1k

研究開発部メンバーの働き⽅ / Sansan R&D Profile

PRO

4

22k

OCI Security サービス概要

oracle4engineer

PRO

2

13k

開発組織の課題解決を加速するための権限委譲 -する側、される側としての向き合い方-

5

270

Eight Engineering Unit 紹介資料

PRO

1

6.9k

マルチロールEMが実践する「組織のレジリエンス」を高めるための組織構造と人材配置戦略

coconala_engineer

3

490

類似画像検索モデルの開発ノウハウ

PRO

4

940

Featured

See All Featured

Art, The Web, and Tiny UX

304

21k

Between Models and Reality

2

230

Stop Working from a Prison Cell

274

21k

Stewardship and Sustainability of Urban and Community Forests

0

130

Distributed Sagas: A Protocol for Coordinating Microservices

333

22k

A brief & incomplete history of  UX Design for the World Wide Web: 1989–2019

1

310

職位にかかわらず全員がリーダーシップを発揮するチーム作り / Building a team where everyone can demonstrate leadership regardless of position

61

52k

AI: The stuff that nobody shows you

PRO

3

350

150

17k

Building Experiences: Design Systems, User Experience, and Full Site Editing

0

430

Chrome DevTools: State of the Union 2024 - Debugging React & Beyond

10

1.1k

コードの90%をAIが書く世界で何が待っているのか / What awaits us in a world where 90% of the code is written by AI

60

42k

Transcript

Alexander Reelsen [email protected] @spinscale Elasticsearch Ingest Processors Luca Wintergerst [email protected]
@LucaWintergerst
‣ Update ‣ Writing your own processors ‣ Use-Cases ‣
Discussion Agenda
Update
‣ bytes (convert to human readable bytes) ‣ dissect (grok
without regexes, much faster) ‣ pipeline processor, referring to other pipelines New processors
‣ - drop processor to fully drop an event ‣
"drop" : { "if": "ctx.foo == 'bar'" } ‣ - scripting can invoke other processors ‣ "ctx.target_field = Processors.bytes(ctx.source_field)" ‣ if in every processor using scripting New processors
‣ performance bump in geoip processor ‣ per processor metrics
‣ index default pipeline: ‣ settings.index.default_pipeline: "my_pipeline" Others
‣ Aligning dissect filters in logstash/beats/ES ‣ https://github.com/elastic/dissect-specification ‣ UI
Future
Writing your own
‣ https://github.com/spinscale/cookiecutter-elasticsearch-ingest-processor ‣ https://github.com/spinscale/elasticsearch-ingest-langdetect ‣ https://github.com/spinscale/elasticsearch-ingest-opennlp Write your own ingest
plugin
Use-Cases
… ask all the things! Discussion