Hi
I have log index with mapping like this:
{
"responseCode",
"time",
"serverName"
}
If I look to server respose code statistic
graph like this:
Green: 404, Blue: 200
Is it possible to use ML algorithm for query:
I want to send a request like:
{
query: {
"term": {
"serverName": "server23456",
"responseCode": 200
}
}
}
And get a response like this:
"time From: 9:40 - 10:20"
Within Elastic ML, you always have the ability to configure your anomaly detection jobs to either use all docs in the index, or to use a filtered query. It sounds like you want to use a filtered query.
To accomplish, the easiest way to do this is to build your filtered search in Kibana Discover tab, then save the query with a name. When configuring the ML job, use the named "saved search" as the basis for the ML job.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.
