Elasticsearch Ingest Processors

Alexander Reelsen

October 30, 2018

250

Elasticsearch Ingest Processors

A BoF session held at the elastic on tour event in Frankfurt in October 2018.

Alexander Reelsen

October 30, 2018

Tweet

More Decks by Alexander Reelsen

See All by Alexander Reelsen

Elasticsearch: From Keyword Search To Data Science

0

190

Evolving Search at an ecommerce marketplace

0

230

The new generation of data stores

0

280

Search Evolution - Keeping up with the hype?

0

400

Mirror mirror... what am I typing next?

0

500

The New Generation of Data Stores

0

260

Elasticsearch: Distributed Search Under the Hood

0

170

Working distributed - but how?

0

230

Implementing a custom aws lambda runtime using Crystal

0

850

Other Decks in Technology

See All in Technology

まだ間に合う！ Agentic AI on AWSの現在地をやさしく一挙おさらい

18

2.9k

Microsoft Agent Frameworkの可観測性

1

120

20251203_AIxIoTビジネス共創ラボ_第4回勉強会_BP山崎.pdf

0

140

Snowflake導入から1年、LayerXのデータ活用の現在 / One Year into Snowflake: How LayerX Uses Data Today

0

2.5k

AI駆動開発ライフサイクル（AI-DLC）の始め方

0

200

Strands Agents × インタリーブ思考で変わるAIエージェント設計 / Strands Agents x Interleaved Thinking AI Agents

5

2.2k

小さく、早く、可能性を多産する。生成AIプロジェクト / prAIrie-dog

visional_engineering_and_design

0

110

AR Guitar: Expanding Guitar Performance from a Live House to Urban Space

0

250

"人"が頑張るAI駆動開発

1

630

Introduce marp-ai-slide-generator

0

140

Kiro を用いたペアプロのススメ

4

1.9k

Oracle Database@AWS：サービス概要のご紹介

oracle4engineer

PRO

2

420

Featured

See All Featured

The Cost Of JavaScript in 2023

55

9.4k

Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything

31

2.6k

Ethics towards AI in product and experience design

1

140

A Tale of Four Properties

162

23k

Facilitating Awesome Meetings

57

6.7k

Effective software design: The role of men in debugging patriarchy in IT @ Voxxed Days AMS

0

170

ピンチをチャンスに：未来をつくるプロダクトロードマップ #pmconf2020

128

55k

Dominate Local Search Results - an insider guide to GBP, reviews, and Local SEO

PRO

0

21

Darren the Foodie - Storyboard

PRO

0

2k

Designing for humans not robots

254

26k

JavaScript: Past, Present, and Future - NDC Porto 2020

52

5.8k

Save Time (by Creating Custom Rails Generators)

PRO

32

1.9k

Transcript

Alexander Reelsen [email protected] @spinscale Elasticsearch Ingest Processors Luca Wintergerst [email protected]
@LucaWintergerst
‣ Update ‣ Writing your own processors ‣ Use-Cases ‣
Discussion Agenda
Update
‣ bytes (convert to human readable bytes) ‣ dissect (grok
without regexes, much faster) ‣ pipeline processor, referring to other pipelines New processors
‣ - drop processor to fully drop an event ‣
"drop" : { "if": "ctx.foo == 'bar'" } ‣ - scripting can invoke other processors ‣ "ctx.target_field = Processors.bytes(ctx.source_field)" ‣ if in every processor using scripting New processors
‣ performance bump in geoip processor ‣ per processor metrics
‣ index default pipeline: ‣ settings.index.default_pipeline: "my_pipeline" Others
‣ Aligning dissect filters in logstash/beats/ES ‣ https://github.com/elastic/dissect-specification ‣ UI
Future
Writing your own
‣ https://github.com/spinscale/cookiecutter-elasticsearch-ingest-processor ‣ https://github.com/spinscale/elasticsearch-ingest-langdetect ‣ https://github.com/spinscale/elasticsearch-ingest-opennlp Write your own ingest
plugin
Use-Cases
… ask all the things! Discussion