Hi,
I'm trying to set up an alert for when my application logs haven't been updated in 1 hour. Could you please share the relevant query?
Hi @Bhavani90,
Welcome to the community! Are your application logs going into a single index or are they included with other application logs in an index?
You could check that the number of documents in the index is 0 for the last hour. There is a similar example in the Elasticsearch query alert documentation that can help you get started.
Hope that helps!