ELK 쿼리 종류(EQL, DSL, KQL)
EQL Search (Event Query Language)
https://www.elastic.co/guide/en/elasticsearch/reference/current/eql.html
EQL search | Elasticsearch Guide [8.0] | Elastic
This functionality is in technical preview and may be changed or removed in a future release. Elastic will apply best effort to fix any issues, but features in technical preview are not subject to the support SLA of official GA features.
www.elastic.co
KQL Search (Kibana Query Language)
https://www.elastic.co/guide/en/kibana/current/kuery-query.html
Kibana Query Language | Kibana Guide [8.0] | Elastic
Kibana Query Languageedit The Kibana Query Language (KQL) is a simple syntax for filtering Elasticsearch data using free text search or field-based search. KQL is only used for filtering data, and has no role in sorting or aggregating the data. KQL is able
www.elastic.co
DSL Query (Domain Specific Language)
https://www.elastic.co/guide/en/elasticsearch/reference/current/query-dsl.html#query-dsl
Query DSL | Elasticsearch Guide [8.0] | Elastic
Elasticsearch provides a full Query DSL (Domain Specific Language) based on JSON to define queries. Think of the Query DSL as an AST (Abstract Syntax Tree) of queries, consisting of two types of clauses: Leaf query clauses Leaf query clauses look for a par
www.elastic.co