topic Alert if the log &quot;pattern&quot; changes in Log Analytics https://community.dynatrace.com/t5/Log-Analytics/Alert-if-the-log-quot-pattern-quot-changes/m-p/292854#M1518 <P>I've configured openpipeline to move the logs from various applications to dedicated buckets. I've also create metric that is counting the messages per loglevel, host and logsource.</P><P>Now I'm struggling with setting up Anomoly dectection to alert the application teams when the log pattern changes, eg. more warnings/criticals than usual &gt; send alert.</P><P>The issue seems to be with the setting the scope, it can only handle one timeseries. In one app I get ~600 metrics (loglevel x hosts x logsource).&nbsp; Removing the log source still results in 50ish splittings. Even just using the loglevel means 4 and thats too inaccurate for alerting.&nbsp; The app has a two digit number of servers that are loadbalances, so knowing which servers log behalvior is changing is helping the team to quickly go to the right machine.</P><P>&nbsp;</P><P>Any help appreciated.</P> Mon, 12 Jan 2026 15:51:10 GMT gschramm 2026-01-12T15:51:10Z Alert if the log "pattern" changes https://community.dynatrace.com/t5/Log-Analytics/Alert-if-the-log-quot-pattern-quot-changes/m-p/292854#M1518 <P>I've configured openpipeline to move the logs from various applications to dedicated buckets. I've also create metric that is counting the messages per loglevel, host and logsource.</P><P>Now I'm struggling with setting up Anomoly dectection to alert the application teams when the log pattern changes, eg. more warnings/criticals than usual &gt; send alert.</P><P>The issue seems to be with the setting the scope, it can only handle one timeseries. In one app I get ~600 metrics (loglevel x hosts x logsource).&nbsp; Removing the log source still results in 50ish splittings. Even just using the loglevel means 4 and thats too inaccurate for alerting.&nbsp; The app has a two digit number of servers that are loadbalances, so knowing which servers log behalvior is changing is helping the team to quickly go to the right machine.</P><P>&nbsp;</P><P>Any help appreciated.</P> Mon, 12 Jan 2026 15:51:10 GMT https://community.dynatrace.com/t5/Log-Analytics/Alert-if-the-log-quot-pattern-quot-changes/m-p/292854#M1518 gschramm 2026-01-12T15:51:10Z