Hello
I’ve tried but with no success.
It is possible to use date math when defining index to search for?
I’m using elasticsearch ILM to rotate my indexes and now alerts are searching through all indexes metricbeat-* which is quite expensive operation.
It would be nice to have a possibility to search only for last 2 day indexes instead
If someone found a way how to achieve this please share an example.
Thanks