通过kibana dsl 对elastic search数据聚合
有一个字段message(日志) 值 如:
send alarm success, code:195, content:{"code":195,"ip":"172.16.92.22","desc":"[dmp-custom-api] reqId: [c4007750b1d715a3] 查询async-hbase 异常 tableName: ronghui:model_score, rowKey: 6391b6a9c40ecd3906c8d0690b906283, cost: 3000, msg: Timed out after 3000ms when joining Deferred@1519679571(state=PENDING, result=null, callback=type get response -> cn.jiguang.data.common.HbaseHelper$$Lambda$37/1425567375@3c7c5179 -> passthrough -> wakeup thread http-nio-11003-exec-14, errback=passthrough -> passthrough -> cn.jiguang.data.common.HbaseHelper$$Lambda$38/1406343950@5683fbbf -> wakeup thread http-nio-11003-exec-14)"}
现在有一个需求,就是需要统计类似上面字段的值中的 某个关键词出现的次数
如:tableName: ronghui:model_score 的数量
有一个字段message(日志) 值 如:
send alarm success, code:195, content:{"code":195,"ip":"172.16.92.22","desc":"[dmp-custom-api] reqId: [c4007750b1d715a3] 查询async-hbase 异常 tableName: ronghui:model_score, rowKey: 6391b6a9c40ecd3906c8d0690b906283, cost: 3000, msg: Timed out after 3000ms when joining Deferred@1519679571(state=PENDING, result=null, callback=type get response -> cn.jiguang.data.common.HbaseHelper$$Lambda$37/1425567375@3c7c5179 -> passthrough -> wakeup thread http-nio-11003-exec-14, errback=passthrough -> passthrough -> cn.jiguang.data.common.HbaseHelper$$Lambda$38/1406343950@5683fbbf -> wakeup thread http-nio-11003-exec-14)"}
现在有一个需求,就是需要统计类似上面字段的值中的 某个关键词出现的次数
如:tableName: ronghui:model_score 的数量
0 个回复