How to limit query to time subset of index?

I want to query against the last hour of a given index - or most recent hour of data. Is this possible?

More specifically - at present Im doing something akin to "select avg(some.column), some.other.column from index-date group by some.other.column" but this is just averaging over the entire days index. How do I limit the time range within the index-date?

The end goal of this is to generate alertable data.

If you have a timestamp within your documents, you can just use a Range Query on it.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.