Sample Elasticsearch Queries for Searching Logs

This page provides sample Elasticsearch Query String (QS) examples to help you construct search queries for filtering and exploring logs.

Steps

  1. In Pulse, go to Logs from the left navigation bar.

  2. On the Logs page, select the search type as Elastic QS.

  3. Use the following sample Elastic QS queries to search logs.

Note Use Boolean operators (AND, OR) to combine multiple search parameters.

Examples

  • To search logs by a message string, Receiving BP-18:
Bash
Copy
  • To search logs by a message string on a particular host:
Bash
Copy
  • To search application logs of a specific service:
Bash
Copy

Search Keywords Allowed

The following keywords can be used in search queries:

KeywordDescriptionExample
fields.componentSearch within services.fields.component:hive_server
host.name.keywordFilter by host name.host.name.keyword:host2.acceldata.dev
source.keywordFilter by source location.source.keyword:/var/log/hive/hiveserver2.log
loglevelSearch within log levels: Info, Debug, Warn, or Error.loglevel:INFO
Boolean operators AND, ORCombine search conditions.loglevel:INFO AND fields.component:hive_server
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Monitor and Analyze Hadoop Services

For additional help, contact www.acceldata.force.com OR call our service desk +1 844 9433282

Copyright © 2026

On This Page
Sample Elasticsearch Queries for Searching LogsStepsExamplesSearch Keywords Allowed