[{"data":1,"prerenderedAt":548},["ShallowReactive",2],{"navigation_docs_zh":3,"docs_zh_-zh-docs-integrations-elasticsearch":280,"docs_zh_-zh-docs-integrations-elasticsearch_surround":543},[4,18,51,254,267],{"title":5,"icon":6,"path":7,"stem":8,"children":9,"page":6},"入门",false,"/zh/docs/getting-started","zh/docs/1.getting-started",[10,14],{"title":11,"path":12,"stem":13},"简介","/zh/docs/getting-started/introduction","zh/docs/1.getting-started/1.introduction",{"title":15,"path":16,"stem":17},"快速开始","/zh/docs/getting-started/quick-start","zh/docs/1.getting-started/2.quick-start",{"title":19,"icon":6,"path":20,"stem":21,"children":22,"page":6},"功能","/zh/docs/features","zh/docs/2.features",[23,27,31,35,39,43,47],{"title":24,"path":25,"stem":26},"告警分诊","/zh/docs/features/alert-triage","zh/docs/2.features/2.alert-triage",{"title":28,"path":29,"stem":30},"事故调查","/zh/docs/features/incident-investigation","zh/docs/2.features/3.incident-investigation",{"title":32,"path":33,"stem":34},"部署验证","/zh/docs/features/deployment-verification","zh/docs/2.features/4.deployment-verification",{"title":36,"path":37,"stem":38},"数据探索","/zh/docs/features/data-exploration","zh/docs/2.features/5.data-exploration",{"title":40,"path":41,"stem":42},"知识库","/zh/docs/features/knowledges","zh/docs/2.features/6.knowledges",{"title":44,"path":45,"stem":46},"Castrel Proxy","/zh/docs/features/castrel-proxy","zh/docs/2.features/7.castrel-proxy",{"title":48,"path":49,"stem":50},"自动化","/zh/docs/features/automations","zh/docs/2.features/8.automations",{"title":52,"icon":6,"path":53,"stem":54,"children":55},"集成","/zh/docs/integrations","zh/docs/3.integrations/index",[56,57,62,67,72,77,81,85,89,94,99,104,109,113,117,122,127,131,136,141,146,151,156,160,165,170,174,178,183,188,193,198,203,208,212,216,220,224,229,234,239,244,249],{"title":52,"path":53,"stem":54},{"title":58,"path":59,"stem":60,"icon":61},"Prometheus","/zh/docs/integrations/prometheus","zh/docs/3.integrations/1.prometheus","i-simple-icons-prometheus",{"title":63,"path":64,"stem":65,"icon":66},"AWS","/zh/docs/integrations/aws","zh/docs/3.integrations/10.aws","i-simple-icons-amazonwebservices",{"title":68,"path":69,"stem":70,"icon":71},"阿里云（Aliyun）","/zh/docs/integrations/aliyun","zh/docs/3.integrations/12.aliyun","i-simple-icons-alibabacloud",{"title":73,"path":74,"stem":75,"icon":76},"腾讯云（Tencent Cloud）","/zh/docs/integrations/tencent-cloud","zh/docs/3.integrations/13.tencent-cloud","i-lucide-plug",{"title":78,"path":79,"stem":80,"icon":76},"华为云（Huawei Cloud）","/zh/docs/integrations/huaweicloud","zh/docs/3.integrations/14.huaweicloud",{"title":82,"path":83,"stem":84,"icon":76},"火山引擎（Volcengine）","/zh/docs/integrations/volcengine","zh/docs/3.integrations/15.volcengine",{"title":86,"path":87,"stem":88,"icon":76},"轻帆云（QingFanYun）","/zh/docs/integrations/qingfanyun","zh/docs/3.integrations/16.qingfanyun",{"title":90,"path":91,"stem":92,"icon":93},"Grafana","/zh/docs/integrations/grafana","zh/docs/3.integrations/17.grafana","i-simple-icons-grafana",{"title":95,"path":96,"stem":97,"icon":98},"VictoriaMetrics","/zh/docs/integrations/victoriametrics","zh/docs/3.integrations/18.victoriametrics","i-simple-icons-victoriametrics",{"title":100,"path":101,"stem":102,"icon":103},"New Relic","/zh/docs/integrations/new-relic","zh/docs/3.integrations/19.new-relic","i-simple-icons-newrelic",{"title":105,"path":106,"stem":107,"icon":108},"Elasticsearch","/zh/docs/integrations/elasticsearch","zh/docs/3.integrations/2.elasticsearch","i-simple-icons-elasticsearch",{"title":110,"path":111,"stem":112,"icon":76},"Zabbix","/zh/docs/integrations/zabbix","zh/docs/3.integrations/20.zabbix",{"title":114,"path":115,"stem":116,"icon":76},"监控宝（JianKongBao）","/zh/docs/integrations/jiankongbao","zh/docs/3.integrations/21.jiankongbao",{"title":118,"path":119,"stem":120,"icon":121},"PagerDuty","/zh/docs/integrations/pagerduty","zh/docs/3.integrations/22.pagerduty","i-simple-icons-pagerduty",{"title":123,"path":124,"stem":125,"icon":126},"Sentry","/zh/docs/integrations/sentry","zh/docs/3.integrations/23.sentry","i-simple-icons-sentry",{"title":128,"path":129,"stem":130,"icon":76},"Freshworks / Freshservice","/zh/docs/integrations/freshworks","zh/docs/3.integrations/24.freshworks",{"title":132,"path":133,"stem":134,"icon":135},"Linear","/zh/docs/integrations/linear","zh/docs/3.integrations/25.linear","i-simple-icons-linear",{"title":137,"path":138,"stem":139,"icon":140},"ClickHouse","/zh/docs/integrations/clickhouse","zh/docs/3.integrations/26.clickhouse","i-simple-icons-clickhouse",{"title":142,"path":143,"stem":144,"icon":145},"Kubernetes","/zh/docs/integrations/kubernetes","zh/docs/3.integrations/27.kubernetes","i-simple-icons-kubernetes",{"title":147,"path":148,"stem":149,"icon":150},"Terraform Cloud / HCP Terraform","/zh/docs/integrations/terraform","zh/docs/3.integrations/28.terraform","i-simple-icons-terraform",{"title":152,"path":153,"stem":154,"icon":155},"Jenkins","/zh/docs/integrations/jenkins","zh/docs/3.integrations/29.jenkins","i-simple-icons-jenkins",{"title":157,"path":158,"stem":159,"icon":93},"Grafana Loki","/zh/docs/integrations/grafana-loki","zh/docs/3.integrations/3.grafana-loki",{"title":161,"path":162,"stem":163,"icon":164},"Ansible / AWX","/zh/docs/integrations/ansible","zh/docs/3.integrations/30.ansible","i-simple-icons-ansible",{"title":166,"path":167,"stem":168,"icon":169},"GitLab","/zh/docs/integrations/gitlab","zh/docs/3.integrations/31.gitlab","i-simple-icons-gitlab",{"title":171,"path":172,"stem":173,"icon":76},"钉钉（DingTalk）","/zh/docs/integrations/dingtalk","zh/docs/3.integrations/32.dingtalk",{"title":175,"path":176,"stem":177,"icon":76},"飞书（Feishu / Lark）","/zh/docs/integrations/feishu","zh/docs/3.integrations/33.feishu",{"title":179,"path":180,"stem":181,"icon":182},"Telegram","/zh/docs/integrations/telegram","zh/docs/3.integrations/34.telegram","i-simple-icons-telegram",{"title":184,"path":185,"stem":186,"icon":187},"Email","/zh/docs/integrations/email","zh/docs/3.integrations/35.email","i-simple-icons-gmail",{"title":189,"path":190,"stem":191,"icon":192},"微信企业机器人（Weixin Clawbot）","/zh/docs/integrations/weixin-clawbot","zh/docs/3.integrations/36.weixin-clawbot","i-simple-icons-wechat",{"title":194,"path":195,"stem":196,"icon":197},"Notion","/zh/docs/integrations/notion","zh/docs/3.integrations/37.notion","i-simple-icons-notion",{"title":199,"path":200,"stem":201,"icon":202},"Confluence","/zh/docs/integrations/confluence","zh/docs/3.integrations/38.confluence","i-simple-icons-confluence",{"title":204,"path":205,"stem":206,"icon":207},"Google Docs","/zh/docs/integrations/google-docs","zh/docs/3.integrations/39.google-docs","i-simple-icons-googledocs",{"title":209,"path":210,"stem":211,"icon":93},"Grafana Tempo","/zh/docs/integrations/grafana-tempo","zh/docs/3.integrations/4.grafana-tempo",{"title":213,"path":214,"stem":215,"icon":76},"钉钉文档（DingTalk Docs）","/zh/docs/integrations/dingtalk-docs","zh/docs/3.integrations/40.dingtalk-docs",{"title":217,"path":218,"stem":219,"icon":76},"LDAP","/zh/docs/integrations/ldap","zh/docs/3.integrations/41.ldap",{"title":221,"path":222,"stem":223,"icon":76},"Dify","/zh/docs/integrations/dify","zh/docs/3.integrations/42.dify",{"title":225,"path":226,"stem":227,"icon":228},"自定义 MCP（Custom MCP）","/zh/docs/integrations/custom-mcp","zh/docs/3.integrations/43.custom-mcp","i-simple-icons-anthropic",{"title":230,"path":231,"stem":232,"icon":233},"GitHub","/zh/docs/integrations/github","zh/docs/3.integrations/5.github","i-simple-icons-github",{"title":235,"path":236,"stem":237,"icon":238},"Slack","/zh/docs/integrations/slack","zh/docs/3.integrations/6.slack","i-simple-icons-slack",{"title":240,"path":241,"stem":242,"icon":243},"Vercel","/zh/docs/integrations/vercel","zh/docs/3.integrations/7.vercel","i-simple-icons-vercel",{"title":245,"path":246,"stem":247,"icon":248},"Graylog","/zh/docs/integrations/graylog","zh/docs/3.integrations/8.graylog","i-simple-icons-graylog",{"title":250,"path":251,"stem":252,"icon":253},"Datadog","/zh/docs/integrations/datadog","zh/docs/3.integrations/9.datadog","i-simple-icons-datadog",{"title":255,"path":256,"stem":257,"children":258,"page":6},"更多","/zh/docs/more","zh/docs/4.more",[259,263],{"title":260,"path":261,"stem":262},"路线图","/zh/docs/more/roadmap","zh/docs/4.more/1.roadmap",{"title":264,"path":265,"stem":266},"支持","/zh/docs/more/support","zh/docs/4.more/2.support",{"title":268,"path":269,"stem":270,"children":271,"page":6},"安全","/zh/docs/security","zh/docs/5.security",[272,276],{"title":273,"path":274,"stem":275},"隐私政策","/zh/docs/security/privacy-policy","zh/docs/5.security/1.privacy-policy",{"title":277,"path":278,"stem":279},"服务条款","/zh/docs/security/terms-of-service","zh/docs/5.security/2.terms-of-service",{"id":281,"title":105,"body":282,"description":536,"extension":537,"links":538,"meta":539,"navigation":540,"path":106,"seo":541,"stem":107,"__hash__":542},"docs_zh/zh/docs/3.integrations/2.elasticsearch.md",{"type":283,"value":284,"toc":527},"minimark",[285,289,328,331,335,458,461,464,490,494,501,504],[286,287,288],"h2",{"id":288},"概览",[290,291,292,304,310,316],"ul",{},[293,294,295,299,300],"li",{},[296,297,298],"strong",{},"连接器名称","：",[301,302,303],"code",{},"elasticsearch",[293,305,306,309],{},[296,307,308],{},"支持的 API 版本","：Elasticsearch / OpenSearch REST API",[293,311,312,315],{},[296,313,314],{},"支持的服务端版本","：Elasticsearch v7.x（>= v7.10.0）和 OpenSearch v2.x（>= v2.0.0）",[293,317,318,299,321],{},[296,319,320],{},"官方文档",[322,323,327],"a",{"href":324,"rel":325},"https://www.elastic.co/guide/en/elasticsearch/reference/current/index.html",[326],"nofollow","Elasticsearch Guide",[286,329,330],{"id":330},"配置",[332,333,334],"p",{},"要使用 Elasticsearch 工具，你需要配置一个包含以下字段的 Connector：",[336,337,338,354],"table",{},[339,340,341],"thead",{},[342,343,344,348,351],"tr",{},[345,346,347],"th",{},"字段",[345,349,350],{},"必填",[345,352,353],{},"说明",[355,356,357,371,387,410,423,435,446],"tbody",{},[342,358,359,365,368],{},[360,361,362],"td",{},[301,363,364],{},"instance_name",[360,366,367],{},"是",[360,369,370],{},"用于标识该连接器实例的名称",[342,372,373,378,380],{},[360,374,375],{},[301,376,377],{},"base_url",[360,379,367],{},[360,381,382,383,386],{},"Elasticsearch 服务的基础 URL（例如 ",[301,384,385],{},"http://elasticsearch:9200","）",[342,388,389,394,396],{},[360,390,391],{},[301,392,393],{},"auth_type",[360,395,367],{},[360,397,398,399,402,403,406,407],{},"设置为 ",[301,400,401],{},"none","、",[301,404,405],{},"basic"," 或 ",[301,408,409],{},"api_key",[342,411,412,417,420],{},[360,413,414],{},[301,415,416],{},"username",[360,418,419],{},"否",[360,421,422],{},"Basic Auth 用户名",[342,424,425,430,432],{},[360,426,427],{},[301,428,429],{},"password",[360,431,419],{},[360,433,434],{},"Basic Auth 密码",[342,436,437,441,443],{},[360,438,439],{},[301,440,409],{},[360,442,419],{},[360,444,445],{},"用于认证的 API Key",[342,447,448,453,455],{},[360,449,450],{},[301,451,452],{},"verify_ssl",[360,454,419],{},[360,456,457],{},"是否校验证书（默认：true）",[286,459,460],{"id":460},"可用工具",[332,462,463],{},"该连接器提供用于数据检索和集群探索的一组工具。",[290,465,466,472,478,484],{},[293,467,468,471],{},[296,469,470],{},"索引管理","：列出索引并获取索引 mapping",[293,473,474,477],{},[296,475,476],{},"搜索与查询","：执行标准 Elasticsearch 搜索",[293,479,480,483],{},[296,481,482],{},"SQL 与 PPL","：执行 OpenSearch SQL 和 PPL 查询",[293,485,486,489],{},[296,487,488],{},"集群信息","：获取分片信息",[286,491,493],{"id":492},"提及","@ 提及",[332,495,496,497,500],{},"支持在对话中 ",[301,498,499],{},"@elasticsearch"," 快速搜索索引名，通过三列钻取（集群 → 索引 → 操作）选择目标。",[286,502,503],{"id":503},"常用链接",[290,505,506,513,520],{},[293,507,508],{},[322,509,512],{"href":510,"rel":511},"https://www.elastic.co/guide/en/elasticsearch/reference/current/query-dsl.html",[326],"Elasticsearch Query DSL",[293,514,515],{},[322,516,519],{"href":517,"rel":518},"https://www.elastic.co/guide/en/elasticsearch/reference/current/eql.html",[326],"EQL 事件查询语言",[293,521,522],{},[322,523,526],{"href":524,"rel":525},"https://www.elastic.co/guide/en/elasticsearch/reference/current/security-api-create-api-key.html",[326],"X-Pack API Key 管理",{"title":528,"searchDepth":529,"depth":529,"links":530},"",2,[531,532,533,534,535],{"id":288,"depth":529,"text":288},{"id":330,"depth":529,"text":330},{"id":460,"depth":529,"text":460},{"id":492,"depth":529,"text":493},{"id":503,"depth":529,"text":503},"将 Castrel 连接到 Elasticsearch，用于日志分析与搜索。","md",null,{},{"icon":108},{"title":105,"description":536},"qSwTYo_CUwFKWWpR6C71SlTCUE_UiaJOpU0wmF4xnWM",[544,546],{"title":100,"path":101,"stem":102,"description":545,"icon":103,"children":-1},"将 Castrel 连接到 New Relic，用于 APM、日志、链路、基础设施、告警与 Dashboard 查询。",{"title":110,"path":111,"stem":112,"description":547,"icon":76,"children":-1},"将 Castrel 连接到 Zabbix，用于主机、触发器、告警与性能数据查询。",1777027433590]