Anomaly detector custom query

anatoli · November 18, 2021, 10:08am

Please help me i am making detector with custom filter

Choose a subset of your data source to focus your data stream and reduce noisy data.
Use the visual editor to create a simple filter, or use the Elasticsearch query DSL to create more advanced filters.

{
“query”: {
“bool”: {
“must”: ,
“filter”: [
{
“bool”: {
“should”: [
{
“range”: {
“time_backend_response”: {
“gt”: 5000
}
}
}
],
“minimum_should_match”: 1
}
}
],
“should”: ,
“must_not”:

but still this gives not-right syntax
which syntax should be used here it is KQL query that working right in Discover query
Please help how to do this

ylwu · November 29, 2021, 6:28pm

This is an example

POST _plugins/_anomaly_detection/detectors
{
  "name": "test",
  "description": "Test detector",
  "time_field": "timestamp",
  "indices": [
    "server_log"
  ],
  "filter_query": {
    "bool": {
      "filter": [
        {
          "range": {
            "value": {
              "gte": 1
            }
          }
        }
      ]
    }
  },
  "detection_interval": {
    "period": {
      "interval": 1,
      "unit": "Minutes"
    }
  },
  "window_delay": {
    "period": {
      "interval": 1,
      "unit": "Minutes"
    }
  },
  "feature_attributes": [
    {
      "feature_name": "test",
      "feature_enabled": true,
      "aggregation_query": {
        "test": {
          "sum": {
            "field": "value"
          }
        }
      }
    }
  ],
  "result_index": "opensearch-ad-plugin-result-test"
}

Topic		Replies	Views
Anomaly Detection DSL errors Machine Learning	1	846	December 21, 2021
Anomaly detection using filter in custom expression Machine Learning	1	616	August 25, 2021
Opensearch Anomaly Detector Custom Expressions OpenSearch Dashboards anomaly-detection	7	130	April 3, 2024
Derivative Features for Anomaly Detection Plugins Machine Learning	2	257	August 11, 2023
Creating Detectors Reporting Plugin	0	259	December 7, 2022

Anomaly detector custom query

Related Topics