diff --git a/filebeat/module/system/_meta/kibana/search/Syslog-system-logs.json b/filebeat/module/system/_meta/kibana/search/Syslog-system-logs.json
index 7ca969c18df..0de99f3c05d 100644
--- a/filebeat/module/system/_meta/kibana/search/Syslog-system-logs.json
+++ b/filebeat/module/system/_meta/kibana/search/Syslog-system-logs.json
@@ -8,11 +8,11 @@
   "title": "Syslog system logs", 
   "version": 1, 
   "kibanaSavedObjectMeta": {
-    "searchSourceJSON": "{\"index\":\"filebeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}}}"
+    "searchSourceJSON": "{\"index\":\"filebeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"_exists_:system.syslog\",\"analyze_wildcard\":true}},\"highlightAll\":true}"
   }, 
   "columns": [
     "system.syslog.hostname", 
     "system.syslog.program", 
     "system.syslog.message"
   ]
-}
+}
\ No newline at end of file