Book Image

Mastering Kibana 6.x

Book Image

Mastering Kibana 6.x

Overview of this book

Kibana is one of the popular tools among data enthusiasts for slicing and dicing large datasets and uncovering Business Intelligence (BI) with the help of its rich and powerful visualizations. To begin with, Mastering Kibana 6.x quickly introduces you to the features of Kibana 6.x, before teaching you how to create smart dashboards in no time. You will explore metric analytics and graph exploration, followed by understanding how to quickly customize Kibana dashboards. In addition to this, you will learn advanced analytics such as maps, hits, and list analytics. All this will help you enhance your skills in running and comparing multiple queries and filters, influencing your data visualization skills at scale. With Kibana’s Timelion feature, you can analyze time series data with histograms and stats analytics. By the end of this book, you will have created a speedy machine learning job using X-Pack capabilities.
Table of Contents (21 chapters)
Title Page
Copyright and Credits
Packt Upsell


We use watcher to perform some actions based on certain conditions that we apply. Conditions are based on the index data that we send to the watch. This loaded data is known as Watch Payload, and it can be loaded from different sources, such as from Elasticsearch or from external HTTP service.

On the Management screen, we have the option of Watcher. Watcher does not come by default with Elastic stack and enables when we install X-Pack into Kibana and Elasticsearch:

The preceding screenshot displays a list of Watches that are running.

Watches have the following possible states:

  • Firing: Watch is triggered and actively performing the actions
  • Error: There is an error state and watch is not working properly
  • Ok: Watch is working properly but not firing right now
  • Disabled: Watch is disabled and not able to fire

Creating the watch

To create a watch, we need to click on the Create new watch button, which opens a dropdown with two values:

  • Threshold alert: It is used to send the alerts on a specific...