1
0
mirror of https://github.com/vimagick/dockerfiles.git synced 2024-12-25 02:04:06 +02:00
dockerfiles/elastalert/data/rules/example.yaml

26 lines
279 B
YAML
Raw Normal View History

2019-10-30 10:11:49 +02:00
name: Example rule
es_host: elasticsearch
es_port: 9200
type: frequency
index: logstash-*
num_events: 10
timeframe:
hours: 1
filter:
- query:
query_string:
query: 'response:[500 TO *]'
alert:
- command
command:
- echo
- "{match[@timestamp]} {match[message]}"