Change default search streams

alitou · March 22, 2021, 8:42pm

I see in this post that it is configurable to change the default search time range. However, I was looking for a way to change the default streams the search is going to be performed on. This is very common for our teams to open up Graylog when an incident has happened, and without setting the streams field to search only between production logs, they start looking for clues.

Since we have other streams for staging or development environments, they may have errors that are not present in the production, and this way we are fooled lots of times by searching in all streams.

This may have happened because we misuse streams or the entire Graylog, but if we could set default search streams we would be much happier. Is it currently possible?

gsmith · March 22, 2021, 11:51pm

@alitou
Were useing Graylog 4.0.5 and what we did was create a “Saved Search” or a Dashboard for situations like that.

Depending on what version you have you can do this with streams.

Hope that helps

system · April 5, 2021, 11:52pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Setting Default Fields in Stream Graylog Central (peer support)	3	3191	November 29, 2018
Change default search range time in all dashboards Graylog Central (peer support) basic-configuration	2	644	January 1, 2022
How to set preferred view as defaut to a stream Graylog Central (peer support)	2	611	August 18, 2021
How to set a saved Search as default view Graylog Central (peer support) dashboards	3	675	October 21, 2022
Change default search range time in dashboards Graylog Central (peer support)	2	1524	March 26, 2020

Change default search streams

Related Topics