06 Nov 2024 08:48 PM
Hi Team,
I am new to DQL and need some guidance on setting up alerts. We have a customer requirement to trigger an alert whenever a new log entry is generated from a specified log source. Could anyone assist with how we can proceed with this? Please find the snapshot below for reference.
Thank you!
07 Nov 2024 12:29 PM
Hi @AntonPinerio,
Thanks for the guidance let me try it out.
13 Nov 2024 06:28 PM
you can try with "isNotNull" field available in the log record.
matchesValue(log.souce, "/some/source") and isNotNull(content)
@Vikas_g1997 wrote:Hi @AntonPinerio,
Thanks for the guidance let me try it out.