Hi,
I'm using graylog2 version 0.12.0, with an web-interface and elasticsearch.
Elastic search seems to work as expected as far as I can tell by calling
the REST-API but when I try to search log entries with a certain property,
I either get no results or I have to switch to a much larger timespan I
actually wanted to search for.
E.g.:
I want to search for logs which have MyFac as facility. I use the query
facility:MyFac. If I search for such entries which were received in the
last 5 minutes I get an empty result set. But if I switch to 1 month as
timespan I get results, even the ones which just were received two minutes
ago.
If I search for a certain warn level I get empty result sets every time.
(Level:Warn)
In the log file I get:
Completed 200 OK in 402ms (Views: 149.1ms)
Started GET
"/visuals/fetch/resultgraph?interval=day&query=Level%3AWarn&since=1395586074"
for 80.110.8.196 at 2014-04-22 16:47:54 +0200
Processing by VisualsController#fetch as JSON
Parameters: {"interval"=>"day", "query"=>"Level:Warn",
"since"=>"1395586074", "id"=>"resultgraph"}
LOL STREAM 1: nil
Completed 200 OK in 37ms (Views: 0.2ms)
Started GET "/visuals/fetch/totalgraph?hours=2" for 80.110.8.196 at
2014-04-22 16:47:55 +0200
Processing by VisualsController#fetch as JSON
Parameters: {"hours"=>"2", "id"=>"totalgraph"}
Completed 200 OK in 28ms (Views: 0.0ms)
Where do I have to check for errors? The logs of graylog seem to be OK.
There are no errors. Any idea where I could start?
--
You received this message because you are subscribed to the Google Groups
"graylog2" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
