Is there a way to configure email alerts if there are any exceptions or errors found on any application logs which are indexed and stored in Elasticsearch?
Please guide. I am running an open source community edition. Thanks in advance.
@stephenb Thanks for the detailed response. I have a specific use case, for example I have the below specific string as exception in /opt/tomcat9/logs/paymentapi.log
"No valid account"
So whenever there are any occurrences of the above string in Elasticsearch, the ELK stack should trigger an email alert.
Is there a free and OSS version of Elastic Observability to install it on Red Hat Enterprise Linux release 8.8 (Ootpa)?
I can not provide all the steps you are going to need to read some of the documents, how to etc...
1st do you have the logs ingested into Elasticsearch already?
How did you ingest them?
Can you show a sample JSONs of a couple of the logs documents that are already in elasticsearch?
There is a lot alerting functionality in the Basic / Free version ... BUT email alerting requires a commercial license...
The Basic license which is Free you can create Alerts and Write the alerts to an index... some people use another tool like logstash to read that index and send emails (that is a little more complicated)
First I would try to create an alert... we can worry about the emails later...
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
