Hi, I am using a combination of graylog and elasticsearch as part of my logging infrastructure. I can use a regex to search for messages. But I cannot find a way to use eval functions. For example, I want to evaluate the average of the response time(It is one of the fields) of the results I get from the search. I used splunk previously, where in I used to pipe and make a eval query which gives me a result. Is there such a mechanism in graylog, or is there a work-around with which I can achieve this.
PS: I tried sending an alert based on the sum/average... but I cannot get the exact value in the mail -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
