Hi all,
Filebeat randomly stops running and we need to restart it with the filebeat command to check and pull any necessary records but is there a way I can set up ELK to notify me via email if there's any gaps in the records or if there's any problems that get flagged up in the system? Currently, I'm only notified when my colleague logs in and checks but we're looking to try and automate it so we can quickly address the issue as soon as it happens rather than when someone logs in.
Can this be done? and if so, I'd appreciate a point in the right direction.
Many thanks!