In above mentioned conf file I'm using apm-* but It is only picking up the apm-transaction indices from elasticsearch but we also want alerts from apm-errors indices as well which are not coming on slack. So, please help and let me know where I'm doing wrong
Hello everyone, I'm using elastalert for alerting but in my configuration file the wildcard entry for indices is not working
index: traces-apm*,apm-* include: ["kubernetes.pod.name","trace.id", "transaction.id","url.full","host.os.platform","http.response.status_code","http.request.headers.User-Agent","error.exception.message"]In above mentioned conf file I'm using apm-* but It is only picking up the apm-transaction indices from elasticsearch but we also want alerts from apm-errors indices as well which are not coming on slack. So, please help and let me know where I'm doing wrong