GitHubGitHub (opens in a new tab)Get a DemoStart Free TrialSign In
  • Logit.io Documentation
    • Logit.io
    • Filebeat
    • Filebeat Modules
    • Windows
    • Linux
    • Kubernetes
    • AWS (Amazon Web Services)
    • Microsoft Azure
    • Jaeger
    • Monitoring an Application
    • Opentelemetry
    • Telegraf
    • OpenSearch Dashboards
    • Grafana Dashboards
  • Log Management
    • Overview
    • Getting Started
    • Alerting
      • Overview
      • Can I Use HTML in Email Alerts?
      • Check Elastalert Rule is Configured Correctly
      • Configuration
        • Alert For Log Volume To Stop Exceeding Stack Limit
        • Configure Change Alerts for OpenSearch
        • Configure Flatline Alerts for OpenSearch
        • Configure Frequency Alerts for OpenSearch
        • Configure High CPU OpenSearch Alerts for Logs
        • Configure OpenSearch Alerts to Match Events For a Query
        • Configure OpenSearch Percentage Match Alerts
        • Configure Spike Alerts for OpenSearch
      • How Do I Create a New Alerting Rule?
      • Notifications
        • How To Send Alerts from Logit.io to OpsGenie
        • Send Alerts & Notifications from Logit.io to Slack
        • Send Alerts & Notifs from Logit.io to PagerDuty
        • Send Email Alerts & Notifications from Logit.io
      • Sending Alerts from Logs Stack for Different Scenarios
    • F.A.Qs
      • How to add the OpenSearch Java client
      • Sending Azure Logs and Metrics to Logit.io
      • What are the risks of sending data via UDP
    • Grafana
      • Access Grafana features via REST API
      • Viewing Logs in Grafana
    • Ingestion Pipeline
      • Overview
      • Adding Inputs
        • Add a HTTP SSL Input
        • Add Amazon S3 Input
        • Add Azure Event Hub Input
        • Add Beats Input
        • Add GELF Input
        • Add Google Cloud Storage Input
        • Add Google Pub/Sub Input
        • Add SQS Input
        • Add Syslog SSL Input
        • Add Syslog TCP or UDP Input
        • Add TCP Input
        • Add TCP SSL Input
        • Add UDP Input
      • Changing Index Names in Logstash
      • Configuration
        • Configuring Logstash Filters
        • Configuring Logstash Firewall
        • Configuring Logstash Inputs
      • Differentiating Log Types in Logstash
      • How To Use Your API Key in Logstash
      • Logstash Dead Letter Queue (DLQ)
      • Removing Fields with Logstash Filters
    • Kibana
      • Access Kibana features via REST API
      • Creating Visualizations
      • Enabling Kibana Multi-Stack
      • Logit.io Kibana Cheatsheet
    • OpenSearch
      • Index Management
        • Aggregatable Text Fields
        • Changing Field Datatypes
        • Index Mappings
          • Overview
          • How to View Mappings
          • Mapping Conflicts
          • Mapping IP Address Info to geo_point Fields
        • Index Patterns
        • Index Templates
        • List Indexes
        • Reindexing
      • OpenSearch Dashboards
        • Overview
        • Access Opensearch Dashboard features via REST API
        • Exporting and Importing
      • Reporting
      • Restoring data from cold storage
      • Searching
        • Disabling Field Searches
        • Export Search Results
        • Pagination
        • Querying With Mapper Size
        • Querying with Python
        • Querying With SQL Workbench
      • Supported Stack Versions
      • Timezones
    • Security
      • Authorizing Applications
      • Multi-Tenancy
      • OpenSearch API Access
      • SSL Certification Expiry Notice
      • SSL Configuration
      • Whitelisted Hosts
    • Troubleshooting
      • Diagnose Issues with Filebeat Configuration
      • How Can I Monitor My Stack Health
      • How Do I Delete Old Indexes in Logit.io
      • How to create an Amazon S3 Bucket
      • Log Volume Count
      • No Data in Elasticsearch, OpenSearch, or Grafana
      • Temporarily Reduce Logs Stack Retention
      • What is Logit.io's Policy on Upgrading ELK
  • Infrastructure Metrics
    • Overview
    • Getting Started
    • Alerting
      • Overview
      • Configuring CPU Alerts
      • Configuring Disk Usage Alerts
      • Configuring RAM Usage Alerts
    • Audit Log
    • Ingestion Pipeline
      • Overview
      • Remote Write
      • Scrape Config
    • Metrics Volume Count
    • Statistics
    • Storage Overview
    • Visualizers
      • Access Grafana features via REST API
      • View Infrastructure Metrics with Grafana
  • Application Performance Monitoring
    • Overview
    • Getting Started
    • Audit Log
    • Configure Authorized Applications
    • Ingestion Pipeline
      • Overview
      • Calculating Span Ingestion
      • OpenTelemetry Inputs
    • Jaeger
      • Access Jaeger features via REST API
      • Span Types
      • Viewing Spans & Traces
    • Statistics
    • Storage
    • Troubleshooting
      • Infrastructure to Logit.io Connectivity
    • Visualizers
  • Hosted OpenSearch
    • Overview
    • How to Create
    • How to Connect
    • Cluster Settings
    • Examples
      • C# Example
      • cURL Example
      • Python Example
      • Java Example
    • Using OpenTelemetry for Logs
    • Using OpenTelemetry for Metrics
    • Using OpenTelemetry for Traces
  • Integrations
    • .NET (Core / 5+)
    • 1Password
    • Active Directory
    • ActiveMQ
    • Aerospike
    • Apache Aurora Server
    • Apache Cassandra
    • Apache HTTP Server
    • Apache Mesos
    • Apache Solr
    • Apache Storm
    • Apache Tomcat
    • AppHarbor
    • Argo CD
    • Auditbeat
    • Auditd
    • Avast
    • AWS Beanstalk
    • AWS CloudFront
    • AWS CloudTrail
    • AWS CloudWatch
    • AWS EC2
    • AWS ECS Fargate Metrics
    • AWS EKS Metrics
    • AWS Elastic Kubernetes Service
    • AWS Elastic Kubernetes Service Logs
    • AWS ELB Application
    • AWS ELB Classic
    • AWS Lambda Cloudwatch
    • AWS S3
    • AWS S3 bucket with an SQS queue
    • Axonius
    • Azure Activity Logs
    • Azure AKS
    • Azure Container Activity Logs
    • Azure Eventhub Diagnostic Logs
    • Azure Kubernetes
    • Azure Logs
    • Azure Metrics
    • Azure SQL
    • bCache
    • Beanstalkd
    • Bond
    • bunny.net CDN
    • Burrow
    • C++
    • CentOS
    • Ceph
    • CheckPoint
    • Cisco ASA Router
    • Cisco Firepower
    • Cisco Meraki
    • ClickHouse
    • Cloud Foundry
    • CouchDB
    • Cynet
    • Debian
    • DigitalOcean
    • Disque
    • Django
    • Docker
    • Dovecot
    • Elastic Agent
    • Elasticsearch
    • Elixir
    • Erlang
    • ESET
    • etcd
    • Fail2ban
    • Falco
    • Fastly
    • File Upload
    • Filebeat
    • Filebeat System
    • Fluent Bit
    • Fluentd
    • Fortigate
    • GELF
    • Github
    • GitLab
    • Go
    • Golang
    • Google AI Platform Metrics
    • Google API Gateway Metrics
    • Google Apigee Metrics
    • Google App Engine Metrics
    • Google Assistant Smart Home Metrics
    • Google BigQuery BI Engine Metrics
    • Google BigQuery Data Transfer Metrics
    • Google BigQuery Metrics
    • Google Certificate Authority Metrics
    • Google Cloud API Metrics
    • Google Cloud Armor Metrics
    • Google Cloud BigTable Metrics
    • Google Cloud Composer Metrics
    • Google Cloud Data Loss Prevention Metrics
    • Google Cloud DNS Metrics
    • Google Cloud Functions Metrics
    • Google Cloud GKE Metrics
    • Google Cloud Healthcare Metrics
    • Google Cloud IDS Metrics
    • Google Cloud Interconnect Metrics
    • Google Cloud Load Balancing
    • Google Cloud Logging Metrics
    • Google Cloud Monitoring Metrics
    • Google Cloud Operations
    • Google Cloud PostgreSQL Metrics
    • Google Cloud Router Metrics
    • Google Cloud Run
    • Google Cloud SQL Metrics
    • Google Cloud Storage Audit
    • Google Cloud Storage Metrics
    • Google Cloud Tasks Metrics
    • Google Cloud TPU Metrics
    • Google Cloud Trace Metrics
    • Google Cloud VPN Metrics
    • Google Cloud Workspace Configuration
    • Google Compute Engine
    • Google Compute Engine Autoscaler Metrics
    • Google Contact Center AI Insights Metrics
    • Google Dataflow Metrics
    • Google Dataproc Metastore Metrics
    • Google Dataproc Metrics
    • Google Datastore Metrics
    • Google Datastream Metrics
    • Google Filestore Metrics
    • Google Firebase Metrics
    • Google Firestore Metrics
    • Google Firewall Insights Metrics
    • Google Identity Access Metrics
    • Google IOT Core Metrics
    • Google Kubernetes Engine Logs
    • Google Kubernetes Engine Metrics
    • Google Kubernetes Engine Metrics
    • Google Managed Service Active Directory Metrics
    • Google Memory Store Memcached Metrics
    • Google Memory Store Redis Metrics
    • Google Network Topology Metrics
    • Google Pub Sub Metrics
    • Google Recaptcha Enterprise Metrics
    • Google Recommendations Metrics
    • Google Storage Transfer Metrics
    • Google Vertex AI Metrics
    • Google VM Manager Metrics
    • Google VPC Metrics
    • Google Workflows Metrics
    • HAProxy
    • Hashicorp Vault
    • Heartbeat
    • Heroku
    • IIS
    • IPMI
    • Java
    • Jenkins
    • Journalbeat
    • JSON via HTTP/S
    • JTI OpenConfig
    • Juniper SRX
    • Kafka
    • Kafka MQ
    • KeyCDN
    • Kibana
    • Kong
    • Kubernetes
    • Local Logstash
    • log4net
    • Logstash Logging
    • macOS
    • Mailchimp
    • McAfee EPO
    • Mcrouter
    • Memcached
    • Metricbeat
    • Microsoft 365
    • MongoDB
    • MSMQ
    • Mulesoft
    • MySQL
    • Neptune Apex
    • Network Device
    • Nginx
    • NLog
    • Node.js
    • NSQ
    • NSQ Consumer
    • Nvidia SMI
    • OpenSearch
    • OpenTelemetry Collector
    • OpenVAS
    • OpenVPN
    • Oracle Kubernetes Engine
    • Ossec
    • Packetbeat
    • Palo Alto Networks
    • pfSense
    • PgBouncer
    • PHP
    • PHP-FPM
    • Phusion Passenger
    • PostgreSQL
    • Prometheus
    • Python
    • RabbitMQ
    • Rancher
    • RavenDB
    • RDS
    • Red Hat
    • Redfish
    • Redis
    • Riak
    • Ruby
    • Ruby on Rails
    • Rust
    • SentinelOne
    • Serilog
    • Solaris
    • Sonic Wall
    • SQL Server
    • Stormshield
    • Suricata
    • Swift
    • Synproxy
    • Syslog
    • Syslog-NG
    • Sysmon
    • System Metrics
    • TCP
    • TeamCity Server
    • Telegraf
    • Tengine
    • Traefik
    • Trend Micro
    • Ubuntu
    • UDP
    • Unbound
    • Victoria Metrics vmagent
    • Vmware Vsphere
    • VPC Flow Logs
    • Wazuh
    • Windows
    • Winlogbeat
    • Wireguard
    • YouTube
    • Zeek
    • ZFS
    • Zookeeper
  • Account Administration
    • Account Access, Users & Teams
      • Roles & Access
        • Change Logit.io User or Authentication Type
        • Give a User/Team Access Only To an OpenSearch Index
        • How do I view my Account Administrators?
        • Learn how to invite and add users to teams
        • Manage Teams and User Permissions
        • Managing OpenSearch & Grafana Security Roles
        • OpenSearch Custom Role For Granular Access
        • OpenSearch Read Only or Dashboard Only Access
        • Transfer Account Ownership To Someone Else
      • Single Sign On
        • Configure OKTA SSO
        • Enable SSO for Logit.io
        • Sign In via Single Sign On
      • Troubleshooting
        • Access Denied Errors Azure AD Login
        • Contact Support
        • Grant Stack Access for Support
        • How to reset your Logit.io password
      • Two Factor Authentication
        • Disable Two Factor Authentication for Logit.io
        • Enable Two Factor Authentication for Logit.io
        • Google Authenticator for Two Factor Authentication
    • Subscriptions, Management & Usage
      • Accounts
        • Data Storage Regions
        • Exceeding Log Volume Limits
        • How To Close My Account
        • How To Delete a Stack
        • Plan Resizing Options
        • Transfer Stacks to Another Account
        • What Happens When My Trial Ends
      • Billing
        • Can I change the email for overusage emails?
        • How do I change my billing details?
        • How do I make a payment to restore access?
        • How do I view my invoices?
        • How to Change the Email for Invoicing
        • How to resize your stack when required
        • Pay For a Different Plan For Each Stack
      • Product
        • Archive Data After Retention Timeframe Has Ended
        • Does Updating a Stack Lose Any Data?
        • How can I be sure my data is secure?
        • How Logit.io Calculates Index Sizes and Usage Statistics
        • How to add plugins
        • Learn how to reduce your log volumes
        • Migrate/Upgrade Stack Latest Version
        • Send Data From an Uncommon Service, Network, or App
        • Upgrade to the Latest Version of Elastalert
        • View Logit.io ELK Stack Usage & Daily Log Volume
        • What Happens to Data After the Retention Period Passed?
        • Where can I check the Logit.io system status?
        • Which Region Stores Logs, Metrics, and Tracing Data?
Question? Give us feedback → (opens in a new tab)Edit this page
Log Management
Kibana
Logit.io Kibana Cheatsheet

Logit.io Kibana ELK Cheatsheet

To view our Kibana ELK cheatsheet please click here (opens in a new tab) to read this on our blog.

Enabling Kibana Multi-StackOpenSearch
© 2025 Logit.io Ltd, All rights reserved.