We have been trying to set up a dashboard to display events from an ES index. The index contains logbook entries with a @timestamp field and a few other text fields, of which we care about the ‘message’ and, maybe, environment (for filtering later).
We want to be able to display a chart with timestamp on the X axis and a line for each entry.
The thing is, we have not been able to get anything displayed. We have imported ES based dashboards and still nothing. We have tried with * for the lucene query, an empty query (supposedly, everything?) …
Is there any way to verify that Grafana can run a raw query on ES to see what gets returned? There definitely is data in ES but maybe we don’t understand how to get the data correctly.