Hi Expert !
I want to configure the alert in logstash, if some condition matched like "404" or "SWIC023" in log message then logstash server generate the alert on specific email. so is it possible that we configure the alert ??
Yes, using conditionals you can do this - https://www.elastic.co/guide/en/logstash/current/event-dependent-configuration.html#conditionals