Hello,
I have configured some streams and based on them some alerts/notifications. Is there a way to get notifications if the alert comes up during specific timeframe? e.g between 9 in the evening until next morning at 8.
Thank you,
Elena
remember this? 
Use those fields you made? with pipelines in the alert condition configuration search field.
Hi,
In the end I tried to extract the hour out of timestamp field, using regex. But for some reason I get what you can see in the screenshot. The regular expression is correct. I have tried it, outside Graylog.
Typing with phone, so let’s see…
My 20 cents, but I’d go with pipeline and a rule something like below. You can leave minutes and seconds out if You don’t need them.
rule "split_timestamp"
when
has_field("timestamp")
then
set_field("ts_hour", $message.timestamp.hourOfDay);
set_field("ts_minute", $message.timestamp.minuteOfHour);
set_field("ts_second", $message.timestamp.secondOfMinute);
end
1 Like
Perfect! Thank you very much
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.