Skip to content

02 Elasticsearch FAQ

Jump to bottom
Lorenzo Mangani edited this page Sep 24, 2015 · 24 revisions

NTOPNG - Elasticsearch - Kibana FAQ

Q: IP Location coordinates are not recognized as "geo_point"
A: Create a Template for the ntopng indexes to correctly map the fields
curl -XPUT localhost:9200/_template/ntopng_template -d '
{
  "template" : "ntopng-*",
  "mappings" : {
    "ntopng" : {
      "DST_IP_LOCATION" : { "type" : "geo_point" },
      "SRC_IP_LOCATION" : { "type" : "geo_point" }
    }
  }
}
'

ref: https://www.elastic.co/guide/en/elasticsearch/reference/current/mapping.html

Clone this wiki locally