Hello,
I would like to use the ELK stack to manage and analyse logs but I'm totally new to it so I would be glad if you could give me some tips.
I'd like to know if it is possible to detect anomalies using the ELK stack, I was thinking about something like filtering all the logs that have the "timetaken" value bigger than the 99th percentile but I'm stuck here, because Elasticsearch doesn’t permit subqueries.
Is there any other way to do something like that? Or could you give me any other idea on how to use Elasticsearch for my purpose?
Thanks in advance for your replies!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.