Only listing one rule

[mcdowellster]

Looks like it connects to my cluster but it only list one rule, error "400" in the extension details.

[csharpdragon]

Could you show me your graylog rules on your web ui?

I have to analyze the that error.

plz show me your grule titles ...

[mcdowellster]

Fails after the first rule loads. Rule after looks like this: rule "Drop - Non-400/500 IIS Logs" when // Compare as it's a number via the GROK pattern - this is likely much faster than a regex: has_field("http_response_code") AND to_long($message.http_response_code) < 400

// Regex method: //regex("[4|5]\d\d", to_string($message.http_response_code)).matches == false then drop_message(); end

[csharpdragon]

I see. I will update

[csharpdragon]

@mcdowellster I fixed this issue. I'm out of contact with Abe now. Could you inform him about this?