I am using the OVA (tried both stable v1.3.3 and v2.0 alpha) and have set up a very simple stream on the default syslog UDP input. I am definitely receiving messages in the stream. The alerts, never fire. I have tried setting a message count condition, a field content value condition, etc. For the first, I tried various thresholds but am currently configured with "Alert is triggered when there are more than 0 messages in the last 3 minutes. Grace period: 0 minutes." For the latter, I tried setting the level:5 which is the level of the syslog messages coming through the stream. I am able to send test emails, I simply cannot get Graylog to trigger an alert. What can I do to troubleshoot this? Thanks much.
-- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/c9953674-4cc7-4dc1-9450-3214e101b75f%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
