nightingale icon indicating copy to clipboard operation
nightingale copied to clipboard
verified publisher icon ccfos

n9e+ES, when configuring log alerts and using group by, there is an error

Open userleibin opened this issue 10 months ago • 1 comments

Question and Steps to reproduce

日志告警使用group by分组时报错

Relevant logs and configurations

{
  "ref": "A",
  "index_type": "index",
  "index": "ingress*",
  "filter": "status:\"500\" AND request:\"/*\"",
  "value": {
    "func": "count"
  },
  "group_by": [
    {
      "cate": "terms",
      "params": [
        {
          "alias": "",
          "query": ""
        }
      ],
      "field": "request"
    }
  ],
  "date_field": "@timestamp",
  "interval": 3600,
  "start": 1749535315,
  "end": 1749538915
}

Version

ES7.17 n9e V8-beta13

userleibin avatar Jun 10 '25 07:06 userleibin

是因为 requesttext 类型,换成 request.keyword 就好使了是吧?

UlricQin avatar Jun 11 '25 06:06 UlricQin