28 lines
948 B
Text
28 lines
948 B
Text
|
[role="xpack"]
|
||
|
|
[[xpack-logs-alerting]]
|
||
|
|
== Logs alerting
|
||
|
|
|
||
|
|
[float]
|
||
|
|
=== Overview
|
||
|
|
|
||
|
|
To use the alerting functionality you need to {kibana-ref}/alerting-getting-started.html#alerting-setup-prerequisites[set up alerting].
|
||
|
|
|
||
|
|
You can then select the *Create alert* option, from the *Alerts* actions dropdown.
|
||
|
|
|
||
|
|
[role="screenshot"]
|
||
|
|
image::logs/images/alert-actions-menu.png[Screenshot showing alerts menu]
|
||
|
|
|
||
|
|
Within the alert flyout you can configure your logs alert:
|
||
|
|
|
||
|
|
[role="screenshot"]
|
||
|
|
image::logs/images/alert-flyout.png[Screenshot showing alerts flyout]
|
||
|
|
|
||
|
|
[float]
|
||
|
|
=== Fields and comparators
|
||
|
|
|
||
|
|
The comparators available for conditions depend on the chosen field. The combinations available are:
|
||
|
|
|
||
|
|
- Numeric fields: *more than*, *more than or equals*, *less than*, *less than or equals*, *equals*, and *does not equal*.
|
||
|
|
- Aggregatable fields: *is* and *is not*.
|
||
|
|
- Non-aggregatable fields: *matches*, *does not match*, *matches phrase*, *does not match phrase*.
|