I'd like to perform a search in log file to find out if only accepted values are used
"Field1" : "A" "Field2" : "B" "Field3" : "D"
I tried with
GET compteas_stat_index_1/_search
{
"query": {
"bool": {
"must_not": [{"match": {"Field1": "A"}},
{"match": {"Field2":"B"}},
{"match":{"Field3":"C"}}]
}
}
}
But I can't get the expected result when having C,B,C, it doesn't come in result window,
thx for any help best regards
CodePudding user response:
yes, i d like to find not ( A and B and C) regards
CodePudding user response:
You're almost there:
{
"query": {
"bool": {
"must_not": {
"bool": {
"must": [
{"match": {"Field1": "A"}},
{"match": {"Field2": "B"}},
{"match": {"Field3": "C"}}
]
}
}
}
}
}