Post insert of a transaction to Elastic Search

sjs · January 30, 2017, 6:09am

Hi everyone,

I receive transactions on MQ and i wrote a JMS listener that stores those transactions to Elastic Search using ES Rest API.

once the transaction is stored to ES, i would like to perform some operations, like:
i) aggregating the data with few fields(for eg: field1 and field 2)
ii) compare the aggregated values of field 1 and field 2 with some predefined values.
iii) if the aggregated values are breached, then i need to raise an alert.

I went through all the products of elastic, like logstash, beats, watcher etc. none of them seems to work for my usecase.

Can you please provide your valuable inputs to how to realized this usecase using elastic stack?

Many Thanks
Srinivas

spinscale · January 31, 2017, 8:14am

Hey,

so your first use-case can be solved with Elasticsearch using aggregations (see also the reference docs).

Your second and third use-case could be done via x-pack alerting.

--Alex

system · February 28, 2017, 8:14am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.