Again a level of ELK knowledge will be required that is outside the scope of this post. However, on the command section a few settings may require additional clarification, the Python code has them documented but for ease of reference, I'm listing them below:
The REST endpoint from where to collect the data
The list of meta keys to retrieve (in the example below '*' refers to all available meta keys)
The SDK query that references the sessions that should be retrieved (in the example below, collect all "packet sessions" meta data)
A tracker file location so only new data is retrieved by each execution on the input command. (i.e. continue from last data previously retrieved)
There will be additional configuration settings and steps required in ELK, once again, there's plenty of information available on this already as the open source solution that ELK is, so I won't go into that. I'm by no means an expert on ELK.
Finally, all that is left to show you is how the data looks. First, some of my Dynamic DNS events.
Below the details of one of those events.
As a proof-of-concept all these details and scripts are provided as-is without any implied support or warranty. I'm not really that experienced in ELK as so I'm sure that someone can probably improve on this significantly, if you do feel free to share your experiences below in the comments section.