No data alert for special field

lstoneir · November 11, 2020, 1:33pm

Hi every one,
I have 5 machines that send logs into test index without logstash.
my test index is like :

{
          "id" : "Machine_1",
          "services_is_ok" : true,
          "delta" : 60,
          "time" : 1601799912000,
},
{
          "id" : "Machine_2",
          "services_is_ok" : true,
          "delta" : 60,
          "time" : 1601799917000,
},
{
          "id" : "Machine_3",
          "services_is_ok" : true,
          "delta" : 60,
          "time" : 1601799918000,
},
{
          "id" : "Machine_4",
          "services_is_ok" : true,
          "delta" : 60,
          "time" : 1601799920000,
},
{
          "id" : "Machine_5",
          "services_is_ok" : true,
          "delta" : 60,
          "time" : 1601799910000,
}

every 60s to 70s data of all machines save in elasticsearch.
I want to set an alarm for watching for example Machine_4 and fire alarm when the data of Machine_4 not received by elasticsearch

lstoneir · December 13, 2020, 6:41am

any solution?

system · January 10, 2021, 6:41am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
No alert form array results Elasticsearch elastic-stack-alerting	14	3012	July 6, 2017
Add status field for kibana alerts in elastic index Kibana elastic-stack-alerting	0	13	September 26, 2024
Monitoring for No Logs Elastic Observability	0	87	April 16, 2024
Watcher false alerts (query wrong? ) Elasticsearch elastic-stack-alerting	5	1302	September 5, 2017
Can I get an email alert on watcher when no data found? Elasticsearch	2	597	February 5, 2018

No data alert for special field

Related topics