Hi Jochen !
Thank you for the info but i tried it already with this search string
source_file:"C:\\Program
Files\\IBM\WebSphere\\AppServer8\\profiles\\AppSrv01\\logs\\MyServer\\SystemOut.log"
but nothing wil be found.
This is the elastic search query:
{
"from": 0,
"size": 100,
"query": {
"query_string": {
"query": "source_file:\"C:\\\\Program
Files\\\\IBM\\WebSphere\\\\AppServer8\\\\profiles\\\\AppSrv01\\\\logs\\\\MyServer\\\\SystemOut.log\"",
"allow_leading_wildcard": false
}
},
"post_filter": {
"bool": {
"must": {
"range": {
"timestamp": {
"from": "2015-09-14 00:58:24.644",
"to": "2015-09-14 08:58:24.644",
"include_lower": true,
"include_upper": true
}
}
}
}
},
"sort": [
{
"timestamp": {
"order": "desc"
}
}
]
}
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/dfcfc144-782a-4c0b-b44a-99221d5b3841%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
