Hello,
We are using Graylog Open 6.0.5 and I am trying to set up an alert through Event Definition, As a very generic example, what I am trying to achieve is:
WHEN Search Query = “Error”
AND Message Count >= 3 in the last 10 minutes
THEN send an notification .
The problem I am facing is that in my configuration, the event is not being triggered off and I am struggling to understand what in my configuration that needs to exist for it to work.
Any help or guidance is appreciated 
