Elastalert for logs ingested to ElasticSearch cluster per day that is size? #1496

ishukeshri2712 · 2024-07-15T20:09:36Z

ishukeshri2712
Jul 15, 2024

Is there any way we can send alerts through mail how much logs are ingested to Elastic search ?

Jul 15, 2024

Consider an any type rule with no filter that runs once a day and has use_count_query: true. You might then have access to num_hits as a var in your alert message. I haven't tried this, so you'll need to read the docs and play with it to see what happens.

View full answer

jertel · 2024-07-15T23:42:40Z

jertel
Jul 15, 2024
Maintainer

Consider an any type rule with no filter that runs once a day and has use_count_query: true. You might then have access to num_hits as a var in your alert message. I haven't tried this, so you'll need to read the docs and play with it to see what happens.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Elastalert for logs ingested to ElasticSearch cluster per day that is size? #1496

{{title}}

Replies: 1 comment

{{title}}

Select a reply

Elastalert for logs ingested to ElasticSearch cluster per day that is size? #1496

ishukeshri2712 Jul 15, 2024

Replies: 1 comment

jertel Jul 15, 2024 Maintainer

ishukeshri2712
Jul 15, 2024

jertel
Jul 15, 2024
Maintainer