IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.
Elastic Docs Kibana Guide [7.7] Elastic Maps Getting started with Elastic Maps
« Adding a choropleth layer Saving the map »

Adding layers for Elasticsearch dataedit

To avoid overwhelming the user with too much data at once, you’ll add two layers for Elasticsearch data.

  • The first layer will display individual documents. The layer will appear when the user zooms in the map to show smaller regions.
  • The second layer will show aggregated data that represents many documents. The layer will appear when the user zooms out the map to show larger amounts of the globe.

Add a vector layer from the document sourceedit

This layer displays web log documents as points. The layer is only visible when users zoom in the map past zoom level 9.

  1. In the map legend, click Add layer.
  2. Click the Documents data source.
  3. Set Index pattern to kibana_sample_data_logs.
  4. Click the Add layer button.
  5. Set Name to Actual Requests.
  6. Set Visibilty to the range [9, 24].
  7. Set Opacity to 100%.
  8. Click Add under Tooltip fields.
  9. In the popover, select clientip, timestamp, host, request, response, machine.os, agent, and bytes and click Add.
  10. Set Fill color to #2200ff.

  11. Click Save & close.

    Your map now looks like this between zoom levels 9 and 24:

    gs add es document layer

Add a vector layer from the grid aggregation sourceedit

Aggregations group Elasticsearch documents into grids. You can calculate metrics for each gridded cell.

You’ll create a layer for aggregated data and make it visible only when the map is zoomed out past zoom level 9. Darker colors will symbolize grids with more web log traffic, and lighter colors will symbolize grids with less traffic. Larger circles will symbolize grids with more total bytes transferred, and smaller circles will symbolize grids with less bytes transferred.

grid metrics both

Add the layeredit

  1. In the map legend, click Add layer.
  2. Click the Grid aggregation data source.
  3. Set Index pattern to kibana_sample_data_logs.
  4. Set Show as to clusters.
  5. Click the Add layer button.
  6. Set Name to Total Requests and Bytes.
  7. Set Visibility to the range [0, 9].
  8. Set Opacity to 100%.

Configure the aggregation metricsedit

  1. Click Add metric under of Metrics label.
  2. Select Sum in the aggregation select.
  3. Select bytes in the field select.

Set the layer styleedit

  1. In Layer style, change Symbol size:

    1. Set Min size to 7.
    2. Set Max size to 25.
    3. Change the field select from count to sum of bytes.

  2. Click Save & close button.

    Your map now looks like this between zoom levels 0 and 9:

    sample data web logs
« Adding a choropleth layer Saving the map »