API tools faq
paste
Guest User

Logstash Index

a guest
Mar 28th, 2018
1,644
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 25.62 KB | None | 0 0
raw download clone embed print report
  1. "logstash-2018.03.27": {
  2. "mappings": {
  3. "doc": {
  4. "properties": {
  5. "10": {
  6. "type": "text",
  7. "fields": {
  8. "keyword": {
  9. "type": "keyword",
  10. "ignore_above": 256
  11. }
  12. }
  13. },
  14. "11": {
  15. "type": "text",
  16. "fields": {
  17. "keyword": {
  18. "type": "keyword",
  19. "ignore_above": 256
  20. }
  21. }
  22. },
  23. "12": {
  24. "type": "text",
  25. "fields": {
  26. "keyword": {
  27. "type": "keyword",
  28. "ignore_above": 256
  29. }
  30. }
  31. },
  32. "13": {
  33. "type": "text",
  34. "fields": {
  35. "keyword": {
  36. "type": "keyword",
  37. "ignore_above": 256
  38. }
  39. }
  40. },
  41. "14": {
  42. "type": "text",
  43. "fields": {
  44. "keyword": {
  45. "type": "keyword",
  46. "ignore_above": 256
  47. }
  48. }
  49. },
  50. "15": {
  51. "type": "text",
  52. "fields": {
  53. "keyword": {
  54. "type": "keyword",
  55. "ignore_above": 256
  56. }
  57. }
  58. },
  59. "16": {
  60. "type": "text",
  61. "fields": {
  62. "keyword": {
  63. "type": "keyword",
  64. "ignore_above": 256
  65. }
  66. }
  67. },
  68. "17": {
  69. "type": "text",
  70. "fields": {
  71. "keyword": {
  72. "type": "keyword",
  73. "ignore_above": 256
  74. }
  75. }
  76. },
  77. "18": {
  78. "type": "text",
  79. "fields": {
  80. "keyword": {
  81. "type": "keyword",
  82. "ignore_above": 256
  83. }
  84. }
  85. },
  86. "19": {
  87. "type": "text",
  88. "fields": {
  89. "keyword": {
  90. "type": "keyword",
  91. "ignore_above": 256
  92. }
  93. }
  94. },
  95. "20": {
  96. "type": "text",
  97. "fields": {
  98. "keyword": {
  99. "type": "keyword",
  100. "ignore_above": 256
  101. }
  102. }
  103. },
  104. "21": {
  105. "type": "text",
  106. "fields": {
  107. "keyword": {
  108. "type": "keyword",
  109. "ignore_above": 256
  110. }
  111. }
  112. },
  113. "22": {
  114. "type": "text",
  115. "fields": {
  116. "keyword": {
  117. "type": "keyword",
  118. "ignore_above": 256
  119. }
  120. }
  121. },
  122. "23": {
  123. "type": "text",
  124. "fields": {
  125. "keyword": {
  126. "type": "keyword",
  127. "ignore_above": 256
  128. }
  129. }
  130. },
  131. " File/Folder": {
  132. "type": "text",
  133. "fields": {
  134. "keyword": {
  135. "type": "keyword",
  136. "ignore_above": 256
  137. }
  138. }
  139. },
  140. " IP": {
  141. "type": "text",
  142. "fields": {
  143. "keyword": {
  144. "type": "keyword",
  145. "ignore_above": 256
  146. }
  147. }
  148. },
  149. " Path": {
  150. "type": "text",
  151. "fields": {
  152. "keyword": {
  153. "type": "keyword",
  154. "ignore_above": 256
  155. }
  156. }
  157. },
  158. " Size": {
  159. "type": "text",
  160. "fields": {
  161. "keyword": {
  162. "type": "keyword",
  163. "ignore_above": 256
  164. }
  165. }
  166. },
  167. " User": {
  168. "type": "text",
  169. "fields": {
  170. "keyword": {
  171. "type": "keyword",
  172. "ignore_above": 256
  173. }
  174. }
  175. },
  176. "00": {
  177. "type": "text",
  178. "fields": {
  179. "keyword": {
  180. "type": "keyword",
  181. "ignore_above": 256
  182. }
  183. }
  184. },
  185. "01": {
  186. "type": "text",
  187. "fields": {
  188. "keyword": {
  189. "type": "keyword",
  190. "ignore_above": 256
  191. }
  192. }
  193. },
  194. "02": {
  195. "type": "text",
  196. "fields": {
  197. "keyword": {
  198. "type": "keyword",
  199. "ignore_above": 256
  200. }
  201. }
  202. },
  203. "03": {
  204. "type": "text",
  205. "fields": {
  206. "keyword": {
  207. "type": "keyword",
  208. "ignore_above": 256
  209. }
  210. }
  211. },
  212. "04": {
  213. "type": "text",
  214. "fields": {
  215. "keyword": {
  216. "type": "keyword",
  217. "ignore_above": 256
  218. }
  219. }
  220. },
  221. "05": {
  222. "type": "text",
  223. "fields": {
  224. "keyword": {
  225. "type": "keyword",
  226. "ignore_above": 256
  227. }
  228. }
  229. },
  230. "06": {
  231. "type": "text",
  232. "fields": {
  233. "keyword": {
  234. "type": "keyword",
  235. "ignore_above": 256
  236. }
  237. }
  238. },
  239. "07": {
  240. "type": "text",
  241. "fields": {
  242. "keyword": {
  243. "type": "keyword",
  244. "ignore_above": 256
  245. }
  246. }
  247. },
  248. "08": {
  249. "type": "text",
  250. "fields": {
  251. "keyword": {
  252. "type": "keyword",
  253. "ignore_above": 256
  254. }
  255. }
  256. },
  257. "09": {
  258. "type": "text",
  259. "fields": {
  260. "keyword": {
  261. "type": "keyword",
  262. "ignore_above": 256
  263. }
  264. }
  265. },
  266. "@message": {
  267. "type": "text",
  268. "fields": {
  269. "keyword": {
  270. "type": "keyword",
  271. "ignore_above": 256
  272. }
  273. }
  274. },
  275. "@source_host": {
  276. "type": "text",
  277. "fields": {
  278. "keyword": {
  279. "type": "keyword",
  280. "ignore_above": 256
  281. }
  282. }
  283. },
  284. "@timestamp": {
  285. "type": "date"
  286. },
  287. "@version": {
  288. "type": "text",
  289. "fields": {
  290. "keyword": {
  291. "type": "keyword",
  292. "ignore_above": 256
  293. }
  294. }
  295. },
  296. "Backup SYSTEM": {
  297. "type": "text",
  298. "fields": {
  299. "keyword": {
  300. "type": "keyword",
  301. "ignore_above": 256
  302. }
  303. }
  304. },
  305. "Connection XXXXXX": {
  306. "type": "text",
  307. "fields": {
  308. "keyword": {
  309. "type": "keyword",
  310. "ignore_above": 256
  311. }
  312. }
  313. },
  314. "Connection SYSTEM": {
  315. "type": "text",
  316. "fields": {
  317. "keyword": {
  318. "type": "keyword",
  319. "ignore_above": 256
  320. }
  321. }
  322. },
  323. "Connection XXXXX": {
  324. "type": "text",
  325. "fields": {
  326. "keyword": {
  327. "type": "keyword",
  328. "ignore_above": 256
  329. }
  330. }
  331. },
  332. "Connection XXXXXX_server_mw": {
  333. "type": "text",
  334. "fields": {
  335. "keyword": {
  336. "type": "keyword",
  337. "ignore_above": 256
  338. }
  339. }
  340. },
  341. "Connection XXXX": {
  342. "type": "text",
  343. "fields": {
  344. "keyword": {
  345. "type": "keyword",
  346. "ignore_above": 256
  347. }
  348. }
  349. },
  350. "Connection XXXXX": {
  351. "type": "text",
  352. "fields": {
  353. "keyword": {
  354. "type": "keyword",
  355. "ignore_above": 256
  356. }
  357. }
  358. },
  359. "Connection XXXX_rdp": {
  360. "type": "text",
  361. "fields": {
  362. "keyword": {
  363. "type": "keyword",
  364. "ignore_above": 256
  365. }
  366. }
  367. },
  368. "Connection system": {
  369. "type": "text",
  370. "fields": {
  371. "keyword": {
  372. "type": "keyword",
  373. "ignore_above": 256
  374. }
  375. }
  376. },
  377. "IPv6_Flag1": {
  378. "type": "text",
  379. "fields": {
  380. "keyword": {
  381. "type": "keyword",
  382. "ignore_above": 256
  383. }
  384. }
  385. },
  386. "IPv6_Flag2": {
  387. "type": "text",
  388. "fields": {
  389. "keyword": {
  390. "type": "keyword",
  391. "ignore_above": 256
  392. }
  393. }
  394. },
  395. "SNTP": {
  396. "type": "text",
  397. "fields": {
  398. "keyword": {
  399. "type": "keyword",
  400. "ignore_above": 256
  401. }
  402. }
  403. },
  404. "SYSTEM": {
  405. "type": "text",
  406. "fields": {
  407. "keyword": {
  408. "type": "keyword",
  409. "ignore_above": 256
  410. }
  411. }
  412. },
  413. "System maz": {
  414. "type": "text",
  415. "fields": {
  416. "keyword": {
  417. "type": "keyword",
  418. "ignore_above": 256
  419. }
  420. }
  421. },
  422. "UTC+01": {
  423. "type": "text",
  424. "fields": {
  425. "keyword": {
  426. "type": "keyword",
  427. "ignore_above": 256
  428. }
  429. }
  430. },
  431. "WinFileService Event": {
  432. "type": "text",
  433. "fields": {
  434. "keyword": {
  435. "type": "keyword",
  436. "ignore_above": 256
  437. }
  438. }
  439. },
  440. "ack_number": {
  441. "type": "text",
  442. "fields": {
  443. "keyword": {
  444. "type": "keyword",
  445. "ignore_above": 256
  446. }
  447. }
  448. },
  449. "action": {
  450. "type": "text",
  451. "fields": {
  452. "keyword": {
  453. "type": "keyword",
  454. "ignore_above": 256
  455. }
  456. }
  457. },
  458. "data_length": {
  459. "type": "text",
  460. "fields": {
  461. "keyword": {
  462. "type": "keyword",
  463. "ignore_above": 256
  464. }
  465. }
  466. },
  467. "dest_ip": {
  468. "type": "text",
  469. "fields": {
  470. "keyword": {
  471. "type": "keyword",
  472. "ignore_above": 256
  473. }
  474. }
  475. },
  476. "dest_port": {
  477. "type": "text",
  478. "fields": {
  479. "keyword": {
  480. "type": "keyword",
  481. "ignore_above": 256
  482. }
  483. }
  484. },
  485. "direction": {
  486. "type": "text",
  487. "fields": {
  488. "keyword": {
  489. "type": "keyword",
  490. "ignore_above": 256
  491. }
  492. }
  493. },
  494. "ecn": {
  495. "type": "text",
  496. "fields": {
  497. "keyword": {
  498. "type": "keyword",
  499. "ignore_above": 256
  500. }
  501. }
  502. },
  503. "evtid": {
  504. "type": "text",
  505. "fields": {
  506. "keyword": {
  507. "type": "keyword",
  508. "ignore_above": 256
  509. }
  510. }
  511. },
  512. "facility": {
  513. "type": "long"
  514. },
  515. "facility_label": {
  516. "type": "text",
  517. "fields": {
  518. "keyword": {
  519. "type": "keyword",
  520. "ignore_above": 256
  521. }
  522. }
  523. },
  524. "flags": {
  525. "type": "text",
  526. "fields": {
  527. "keyword": {
  528. "type": "keyword",
  529. "ignore_above": 256
  530. }
  531. }
  532. },
  533. "flow_label": {
  534. "type": "text",
  535. "fields": {
  536. "keyword": {
  537. "type": "keyword",
  538. "ignore_above": 256
  539. }
  540. }
  541. },
  542. "geoip": {
  543. "properties": {
  544. "city_name": {
  545. "type": "text",
  546. "fields": {
  547. "keyword": {
  548. "type": "keyword",
  549. "ignore_above": 256
  550. }
  551. }
  552. },
  553. "continent_code": {
  554. "type": "text",
  555. "fields": {
  556. "keyword": {
  557. "type": "keyword",
  558. "ignore_above": 256
  559. }
  560. }
  561. },
  562. "country_code2": {
  563. "type": "text",
  564. "fields": {
  565. "keyword": {
  566. "type": "keyword",
  567. "ignore_above": 256
  568. }
  569. }
  570. },
  571. "country_code3": {
  572. "type": "text",
  573. "fields": {
  574. "keyword": {
  575. "type": "keyword",
  576. "ignore_above": 256
  577. }
  578. }
  579. },
  580. "country_name": {
  581. "type": "text",
  582. "fields": {
  583. "keyword": {
  584. "type": "keyword",
  585. "ignore_above": 256
  586. }
  587. }
  588. },
  589. "dma_code": {
  590. "type": "long"
  591. },
  592. "ip": {
  593. "type": "text",
  594. "fields": {
  595. "keyword": {
  596. "type": "keyword",
  597. "ignore_above": 256
  598. }
  599. }
  600. },
  601. "latitude": {
  602. "type": "float"
  603. },
  604. "location": {
  605. "properties": {
  606. "lat": {
  607. "type": "float"
  608. },
  609. "lon": {
  610. "type": "float"
  611. }
  612. }
  613. },
  614. "longitude": {
  615. "type": "float"
  616. },
  617. "postal_code": {
  618. "type": "text",
  619. "fields": {
  620. "keyword": {
  621. "type": "keyword",
  622. "ignore_above": 256
  623. }
  624. }
  625. },
  626. "region_code": {
  627. "type": "text",
  628. "fields": {
  629. "keyword": {
  630. "type": "keyword",
  631. "ignore_above": 256
  632. }
  633. }
  634. },
  635. "region_name": {
  636. "type": "text",
  637. "fields": {
  638. "keyword": {
  639. "type": "keyword",
  640. "ignore_above": 256
  641. }
  642. }
  643. },
  644. "timezone": {
  645. "type": "text",
  646. "fields": {
  647. "keyword": {
  648. "type": "keyword",
  649. "ignore_above": 256
  650. }
  651. }
  652. }
  653. }
  654. },
  655. "host": {
  656. "type": "text",
  657. "fields": {
  658. "keyword": {
  659. "type": "keyword",
  660. "ignore_above": 256
  661. }
  662. }
  663. },
  664. "icmp_echo_id": {
  665. "type": "text",
  666. "fields": {
  667. "keyword": {
  668. "type": "keyword",
  669. "ignore_above": 256
  670. }
  671. }
  672. },
  673. "icmp_echo_sequence": {
  674. "type": "text",
  675. "fields": {
  676. "keyword": {
  677. "type": "keyword",
  678. "ignore_above": 256
  679. }
  680. }
  681. },
  682. "icmp_type": {
  683. "type": "text",
  684. "fields": {
  685. "keyword": {
  686. "type": "keyword",
  687. "ignore_above": 256
  688. }
  689. }
  690. },
  691. "icmp_unreachport_dest_ip": {
  692. "type": "text",
  693. "fields": {
  694. "keyword": {
  695. "type": "keyword",
  696. "ignore_above": 256
  697. }
  698. }
  699. },
  700. "icmp_unreachport_port": {
  701. "type": "text",
  702. "fields": {
  703. "keyword": {
  704. "type": "keyword",
  705. "ignore_above": 256
  706. }
  707. }
  708. },
  709. "icmp_unreachport_protocol": {
  710. "type": "text",
  711. "fields": {
  712. "keyword": {
  713. "type": "keyword",
  714. "ignore_above": 256
  715. }
  716. }
  717. },
  718. "id": {
  719. "type": "text",
  720. "fields": {
  721. "keyword": {
  722. "type": "keyword",
  723. "ignore_above": 256
  724. }
  725. }
  726. },
  727. "iface": {
  728. "type": "text",
  729. "fields": {
  730. "keyword": {
  731. "type": "keyword",
  732. "ignore_above": 256
  733. }
  734. }
  735. },
  736. "ip_ver": {
  737. "type": "text",
  738. "fields": {
  739. "keyword": {
  740. "type": "keyword",
  741. "ignore_above": 256
  742. }
  743. }
  744. },
  745. "length": {
  746. "type": "text",
  747. "fields": {
  748. "keyword": {
  749. "type": "keyword",
  750. "ignore_above": 256
  751. }
  752. }
  753. },
  754. "logsource": {
  755. "type": "text",
  756. "fields": {
  757. "keyword": {
  758. "type": "keyword",
  759. "ignore_above": 256
  760. }
  761. }
  762. },
  763. "message": {
  764. "type": "text",
  765. "fields": {
  766. "keyword": {
  767. "type": "keyword",
  768. "ignore_above": 256
  769. }
  770. }
  771. },
  772. "offset": {
  773. "type": "text",
  774. "fields": {
  775. "keyword": {
  776. "type": "keyword",
  777. "ignore_above": 256
  778. }
  779. }
  780. },
  781. "priority": {
  782. "type": "long"
  783. },
  784. "prog": {
  785. "type": "text",
  786. "fields": {
  787. "keyword": {
  788. "type": "keyword",
  789. "ignore_above": 256
  790. }
  791. }
  792. },
  793. "program": {
  794. "type": "text",
  795. "fields": {
  796. "keyword": {
  797. "type": "keyword",
  798. "ignore_above": 256
  799. }
  800. }
  801. },
  802. "proto": {
  803. "type": "text",
  804. "fields": {
  805. "keyword": {
  806. "type": "keyword",
  807. "ignore_above": 256
  808. }
  809. }
  810. },
  811. "proto_id": {
  812. "type": "text",
  813. "fields": {
  814. "keyword": {
  815. "type": "keyword",
  816. "ignore_above": 256
  817. }
  818. }
  819. },
  820. "protocol_id": {
  821. "type": "text",
  822. "fields": {
  823. "keyword": {
  824. "type": "keyword",
  825. "ignore_above": 256
  826. }
  827. }
  828. },
  829. "protocol_type": {
  830. "type": "text",
  831. "fields": {
  832. "keyword": {
  833. "type": "keyword",
  834. "ignore_above": 256
  835. }
  836. }
  837. },
  838. "reason": {
  839. "type": "text",
  840. "fields": {
  841. "keyword": {
  842. "type": "keyword",
  843. "ignore_above": 256
  844. }
  845. }
  846. },
  847. "received_at": {
  848. "type": "date"
  849. },
  850. "received_from": {
  851. "type": "text",
  852. "fields": {
  853. "keyword": {
  854. "type": "keyword",
  855. "ignore_above": 256
  856. }
  857. }
  858. },
  859. "rule": {
  860. "type": "text",
  861. "fields": {
  862. "keyword": {
  863. "type": "keyword",
  864. "ignore_above": 256
  865. }
  866. }
  867. },
  868. "sequence_number": {
  869. "type": "text",
  870. "fields": {
  871. "keyword": {
  872. "type": "keyword",
  873. "ignore_above": 256
  874. }
  875. }
  876. },
  877. "severity": {
  878. "type": "long"
  879. },
  880. "severity_label": {
  881. "type": "text",
  882. "fields": {
  883. "keyword": {
  884. "type": "keyword",
  885. "ignore_above": 256
  886. }
  887. }
  888. },
  889. "src_ip": {
  890. "type": "text",
  891. "fields": {
  892. "keyword": {
  893. "type": "keyword",
  894. "ignore_above": 256
  895. }
  896. }
  897. },
  898. "src_port": {
  899. "type": "text",
  900. "fields": {
  901. "keyword": {
  902. "type": "keyword",
  903. "ignore_above": 256
  904. }
  905. }
  906. },
  907. "syslog_facility": {
  908. "type": "text",
  909. "fields": {
  910. "keyword": {
  911. "type": "keyword",
  912. "ignore_above": 256
  913. }
  914. }
  915. },
  916. "syslog_facility_code": {
  917. "type": "long"
  918. },
  919. "syslog_pid": {
  920. "type": "text",
  921. "fields": {
  922. "keyword": {
  923. "type": "keyword",
  924. "ignore_above": 256
  925. }
  926. }
  927. },
  928. "syslog_program": {
  929. "type": "text",
  930. "fields": {
  931. "keyword": {
  932. "type": "keyword",
  933. "ignore_above": 256
  934. }
  935. }
  936. },
  937. "syslog_severity": {
  938. "type": "text",
  939. "fields": {
  940. "keyword": {
  941. "type": "keyword",
  942. "ignore_above": 256
  943. }
  944. }
  945. },
  946. "syslog_severity_code": {
  947. "type": "long"
  948. },
  949. "tags": {
  950. "type": "text",
  951. "fields": {
  952. "keyword": {
  953. "type": "keyword",
  954. "ignore_above": 256
  955. }
  956. }
  957. },
  958. "tcp_flags": {
  959. "type": "text",
  960. "fields": {
  961. "keyword": {
  962. "type": "keyword",
  963. "ignore_above": 256
  964. }
  965. }
  966. },
  967. "tcp_options": {
  968. "type": "text",
  969. "fields": {
  970. "keyword": {
  971. "type": "keyword",
  972. "ignore_above": 256
  973. }
  974. }
  975. },
  976. "tcp_window": {
  977. "type": "text",
  978. "fields": {
  979. "keyword": {
  980. "type": "keyword",
  981. "ignore_above": 256
  982. }
  983. }
  984. },
  985. "timestamp": {
  986. "type": "text",
  987. "fields": {
  988. "keyword": {
  989. "type": "keyword",
  990. "ignore_above": 256
  991. }
  992. }
  993. },
  994. "tos": {
  995. "type": "text",
  996. "fields": {
  997. "keyword": {
  998. "type": "keyword",
  999. "ignore_above": 256
  1000. }
  1001. }
  1002. },
  1003. "tracker": {
  1004. "type": "text",
  1005. "fields": {
  1006. "keyword": {
  1007. "type": "keyword",
  1008. "ignore_above": 256
  1009. }
  1010. }
  1011. },
  1012. "ttl": {
  1013. "type": "text",
  1014. "fields": {
  1015. "keyword": {
  1016. "type": "keyword",
  1017. "ignore_above": 256
  1018. }
  1019. }
  1020. },
  1021. "type": {
  1022. "type": "text",
  1023. "fields": {
  1024. "keyword": {
  1025. "type": "keyword",
  1026. "ignore_above": 256
  1027. }
  1028. }
  1029. }
  1030. }
  1031. }
  1032. }
  1033. },
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!