Elasticsearch Ingest Processors

Alexander Reelsen

October 30, 2018

280

Elasticsearch Ingest Processors

A BoF session held at the elastic on tour event in Frankfurt in October 2018.

Alexander Reelsen

October 30, 2018

More Decks by Alexander Reelsen

See All by Alexander Reelsen

Understanding Apache Lucene - More than just full-text search

0

170

Elasticsearch: From Keyword Search To Data Science

0

210

Evolving Search at an ecommerce marketplace

0

250

The new generation of data stores

0

320

Search Evolution - Keeping up with the hype?

0

430

Mirror mirror... what am I typing next?

0

530

The New Generation of Data Stores

0

290

Elasticsearch: Distributed Search Under the Hood

0

190

Working distributed - but how?

0

250

Other Decks in Technology

See All in Technology

生成AIはソフトウェア開発の革命か、ソフトウェア工学の宿題再提出なのか -ソフトウェア品質特性の追加提案-

PRO

2

880

データモデリング通り #5オンライン勉強会： AIに『ビジネスの文脈』を教え込むデータモデリング

0

260

ワールドカフェ再び、そしてゴール・ルール・ロール・ツール / World Café Revisited, and the Goals-Rules-Roles-Tools

PRO

0

150

ブラウザの投機的読み込みと投機ルールAPIを理解し、Webサービスのパフォーマンスを最適化する

3

300

知ってた？JavaScriptの"正しさ"を検証するテストが5万以上もあること(Test262)

1

190

試作とデモンストレーション / Prototyping and Demonstrations

PRO

0

200

Oracle Base Database Service 技術詳細

oracle4engineer

PRO

15

100k

なぜ、私がCommunity Builderに?〜活動期間1か月半でも選出されたワケ〜

0

120

Oracle Exadata Database Service on Cloud@Customer X11M (ExaDB-C@C) サービス概要

oracle4engineer

PRO

2

8k

SREの仕事は「壊さないこと」ではなくなった〜自律化していくシステムに、責任と判断を与えるという価値〜 / 20260515 Naoki Shimada

PRO

1

140

毎日の作業を Claude Code 経由にしたら、ノウハウがコードになった

1

1.3k

世界の中心でApp Runnerを叫ぶ FINAL

0

260

Featured

See All Featured

The Illustrated Children's Guide to Kubernetes

51

52k

Java REST API Framework Comparison - PWX 2021

34

9.3k

HU Berlin: Industrial-Strength Natural Language Processing with spaCy and Prodigy

PRO

0

370

464

140k

Darren the Foodie - Storyboard

PRO

3

3.3k

Evolution of real-time – Irina Nazarova, EuRuKo, 2024

9

1.3k

Making Projects Easy

120

6.6k

Avoiding the “Bad Training, Faster” Trap in the Age of AI

0

140

Marketing to machines

1

5.2k

How to Talk to Developers About Accessibility

2

190

Paper Plane (Part 1)

PRO

0

7.3k

The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs

PRO

3

3.4k

Transcript

Alexander Reelsen [email protected] @spinscale Elasticsearch Ingest Processors Luca Wintergerst [email protected]
@LucaWintergerst
‣ Update ‣ Writing your own processors ‣ Use-Cases ‣
Discussion Agenda
Update
‣ bytes (convert to human readable bytes) ‣ dissect (grok
without regexes, much faster) ‣ pipeline processor, referring to other pipelines New processors
‣ - drop processor to fully drop an event ‣
"drop" : { "if": "ctx.foo == 'bar'" } ‣ - scripting can invoke other processors ‣ "ctx.target_field = Processors.bytes(ctx.source_field)" ‣ if in every processor using scripting New processors
‣ performance bump in geoip processor ‣ per processor metrics
‣ index default pipeline: ‣ settings.index.default_pipeline: "my_pipeline" Others
‣ Aligning dissect filters in logstash/beats/ES ‣ https://github.com/elastic/dissect-specification ‣ UI
Future
Writing your own
‣ https://github.com/spinscale/cookiecutter-elasticsearch-ingest-processor ‣ https://github.com/spinscale/elasticsearch-ingest-langdetect ‣ https://github.com/spinscale/elasticsearch-ingest-opennlp Write your own ingest
plugin
Use-Cases
… ask all the things! Discussion