Hi ,
I am trying to search for a specific hostname in graylog search.
When searching for server-name graylog returns correct logs
when seraching for server-* graylog returns nothing.
What is wrong in the last research
Thanx!
Which message field does include the host name you’re searching for?
Which version of Graylog and Elasticsearch are you using?
Hi,
field message containing the hostname: source
I am using elasticsearch 2.3.2
graylog 2.3.1
Hi,
Do you have any clue guys?
Thx
can You paste exact search phrase You are using
I suppose You are using this:
source=something
then
source=some* wont work
use
source:some*
instead
Exact search is:
source:srv-name // returns srv-name log
source:srv-* //doesn’t returns nothing
to be honest, I have the same situation with “-” inside, works for me 
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.