I think you can achieve something like that using aggregations but the time will not over lap.
Depends what do you want to achieve ?? If you like the sliding windows kind of behaviour you will have to call elasticsearch in some period of time. I will try to make some working example tomorrow evening and will post back. On Monday, March 16, 2015 at 11:26:45 AM UTC, Mitul Golakiya wrote: > > Hello All, > > We are tacking user with elastic search. I want to retrieve data like, > > Check if same mac address was there for more than 5 times in 1 minute of > timeframe. > > How can I retrieve data like this ? > > Thanks. > -- You received this message because you are subscribed to the Google Groups "elasticsearch" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/4a2db471-cdf9-47ee-ba85-feb3ab2bcac7%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
