Use values from syslog data in dashoards

Grafana Elasticsearch
,
1

Hi Team,

I searched in the internet but found not help for my question.

I am using elastic search as source. The syslog data will be pushed via filebeat into elastic search. Now I want to create a grafana dashboard for the temperature of my heating. The logfiles looks like this (field message):

Feb 3 22:54:48 ESP Unit: 0 : DS : Temperature: 55.50 (28-ff-16-79-a2-19-3-96)
Feb 3 22:53:48 ESP Unit: 0 : DS : Temperature: 55.56 (28-ff-16-79-a2-19-3-96)
Feb 3 22:52:48 ESP Unit: 0 : DS : Temperature: 55.56 (28-ff-16-79-a2-19-3-96)
Feb 3 22:51:48 ESP Unit: 0 : DS : Temperature: 55.56 (28-ff-16-79-a2-19-3-96)
Feb 3 22:50:48 ESP Unit: 0 : DS : Temperature: 55.63 (28-ff-16-79-a2-19-3-96)
Feb 3 22:49:48 ESP Unit: 0 : DS : Temperature: 55.63 (28-ff-16-79-a2-19-3-96)
Feb 3 22:48:47 ESP Unit: 0 : DS : Temperature: 55.75 (28-ff-16-79-a2-19-3-96)
Feb 3 22:47:47 ESP Unit: 0 : DS : Temperature: 55.69 (28-ff-16-79-a2-19-3-96)

So the question is how to build the correct query for a Dashboad based on the value behind Temperature: and before (28-ff-16-79-a2-19-3-96).

Many Thanks Manuel

2

Hi @mbeiwinkler, welcome to the :grafana: community!

If you’re using the elasticsearch datasource, you’ll want to configure your fields there. For example, with filebeat you can use the dissect processor to break your message up into fields before ingesting it into elasticsearch: Dissect strings | Filebeat Reference [8.9] | Elastic

Then you can query the specific Temperature field to create your visualization.

Alternatively, you might want to take a look at Loki: