Host fields

edit

Info collected for the host machine.

host.name

type: keyword

Hostname.

host.id

type: keyword

Unique host id.

host.architecture

type: keyword

Host architecture (e.g. x86_64, arm, ppc, mips).

host.containerized

type: boolean

If the host is a container.

host.os.platform

type: keyword

OS platform (e.g. centos, ubuntu, windows).

host.os.name

type: keyword

Operating system name (e.g. "Mac OS X").

host.os.build

type: keyword

OS build information (e.g. "18D109").

host.os.version

type: keyword

OS version.

host.os.family

type: keyword

OS family (e.g. redhat, debian, freebsd, windows).

host.ip

type: ip

List of IP-addresses.

host.mac

type: keyword

List of hardware-addresses, usually MAC-addresses.