-
|
I'm new to Elastalert2. Trying to figure out how to write every alert to a line delimited json file. I'm sure I have to do this with the "command" rule directive, but unable to figure out exactly what I need to do to include alert_text, rule name and other information in the json alert log. thanks all |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
You can use the If you prefer to use the As there are examples and documentation already provided for ElastAlert 2, we would appreciate it if you are more specific as to what you've tried, the expected outcome vs what actually occurred. See #11 for more information about requesting community support. |
Beta Was this translation helpful? Give feedback.
You can use the
debugalerter to send all alerts to a log file. You can configure the logger format via thelogging:section ofconfig.yaml.If you prefer to use the
commandalerter, that will work also.As there are examples and documentation already provided for ElastAlert 2, we would appreciate it if you are more specific as to what you've tried, the expected outcome vs what actually occurred. See #11 for more information about requesting community support.