mirror of
https://github.com/elastic/kibana.git
synced 2025-04-25 10:23:14 -04:00
34 lines
1,011 B
Text
34 lines
1,011 B
Text
[[tutorial-discovering]]
|
|
=== Discover your data
|
|
|
|
Using *Discover*, enter
|
|
an {ref}/query-dsl-query-string-query.html#query-string-syntax[Elasticsearch
|
|
query] to search your data and filter the results.
|
|
|
|
. Open *Discover*.
|
|
+
|
|
The `shakes*` index pattern appears.
|
|
|
|
. To make `ba*` the current index, click the index pattern dropdown, then select `ba*`.
|
|
+
|
|
By default, all fields are shown for each matching document.
|
|
|
|
. In the search field, enter:
|
|
+
|
|
[source,text]
|
|
account_number<100 AND balance>47500
|
|
+
|
|
The search returns all account numbers between zero and 99 with balances in
|
|
excess of 47,500. Results appear for account numbers 8, 32, 78, 85, and 97.
|
|
+
|
|
[role="screenshot"]
|
|
image::images/tutorial-discover-2.png[]
|
|
+
|
|
. Hover over the list of *Available fields*, then
|
|
click *add* next to each field you want include as a column in the table.
|
|
+
|
|
For example, when you add the `account_number` field, the display changes to a list of five
|
|
account numbers.
|
|
+
|
|
[role="screenshot"]
|
|
image::images/tutorial-discover-3.png[]
|