Elastic Search by Date Range

Raghavendra_B · October 5, 2021, 3:27am

Hello,

I want to see the logs for last 5 minutes from particular timestamp.

I am constructing elastic log url dynamically for alert message (with timestamp i.e the alert triggered time). For specifying date range for logs, i don't have context of start time. So i have to look for last 5 min logs (alert trigger for 5 min ).

Ex:

     start: "~5m ago" and end:alertTriggertrdTime
     logPosition=(end:alertTriggertrdTime,position:!n,start:~5m ago,streamLive:!f)

But didn't workout for me. Could you please help us on this issue.

weltenwort · October 26, 2021, 11:28am

Hi @Raghavendra_B,

we have special routes to open the logs stream at a specific time:

/app/logs/link-to/logs?time=${TIMESTAMP}

where you replace ${TIMESTAMP} with a millisecond epoch value like 1635247161801. Then the Logs UI would set the time range to TIMESTAMP - 1 hour until TIMESTAMP + 1 hour and center on the given TIMESTAMP.

Does that help in your use-case?

system · November 23, 2021, 11:28am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Query the last 5 minutes Elasticsearch	2	35582	April 23, 2017
How to set a time range in an Alert? Kibana elastic-stack-alerting	4	1139	October 26, 2020
How to set timerange query to -15min from now? Elasticsearch	1	272	January 17, 2023
How to send alert between specific time range in Kibana? Kibana elastic-stack-alerting	2	1681	April 10, 2020
Eql with time range Elasticsearch eql-elastic-query-language	1	202	December 10, 2023

Elastic Search by Date Range

Related topics