Skip to content

Searching Log Events

By connecting to port 80 (or 443, if you want HTTPS) on / (if using Sematext Cloud Europe), you can use the Elasticsearch API to search through your data, in the same way you can send it.

Logs Apps comes with its own UI, which integrates nicely with other Sematext Apps, such as Monitoring (seethe Monitoring Documentation). You can correlate data in any Logs App with any other Logs, Monitoring, Synthetics or Experience App by using Split Screen.

Sematext Monitoring UI screen

Searching Log Events

Searching log events is possible from various sections within a Logs Report. You can use Search Syntax for a rich, yet simple query syntax very much like the query syntax used by Google.

Query Box Screenshot

You can also include or exclude specific field values by using the Filters section at the top of the Logs Report.

Logs Filters

Alternatively, in the Logs Table, simply click on the value name to add an include/exclude filter. Or, when expanding a row, you'll find "+" and "-" icons next to each value, allowing you to add include/exclude filters.

Logs LT Filters

Another method to filter your logs is through the Fields & Filters section. Within this section, you can view the top values for each field within the selected time range and apply include/exclude filters. Or you can filter out the top values for that field and to see less common occurrences, allowing you to pinpoint specific anomalies or outliers within your logs for more detailed analysis.

Logs F&F Filters

Besides web UI, there's also Logsene CLI, a command line interface for searching through logs, with the ability to pipe the output to awk, sed, cut, sort and other useful shell commands. See Logsene CLI Introduction.