问题描述
我有两个索引
index_1:{"code":1,"name":john,"city":"mumbai" }
index_2:{{"code":1,"Month":June",payment:78000},{"code":2,"Month":July,payment:98000 },{"code":1,"Month":August",payment:88000 } }
我想要什么:
index_3:{{"code":1,"city":"mumbai",payment:88000} }
我在做什么:
input {
elasticsearch {
hosts => "localost"
index => "index_1"
query => '{ "query": { "match_all": { } } }'
sort => "code:desc"
scroll => "5m"
docinfo => true
}
}
filter {
elasticsearch {
hosts => "localhost"
index => "index_2"
query => "code:1"
fields => {
"Month" => "Month","payment" => "payment"
}
}
}
output {
elasticsearch {
hosts => ["localhost"]
index => "index_3"
}
}
但是它给了我一个总数为1的_doc。我想要单独的结果为2。
解决方法
暂无找到可以解决该程序问题的有效方法,小编努力寻找整理中!
如果你已经找到好的解决方法,欢迎将解决方案带上本链接一起发送给小编。
小编邮箱:dio#foxmail.com (将#修改为@)