My requirement is to monitor files daily, weekly, monthly, and quarterly and I have to search during a specific time period for all these types of files and show how many were not received.
Not sure if this logic will work, but I wanted to check if we could give the cron expression within the search to match all the possibilities during the given time range and show file types if they were not received.
So could you please let me know the syntax ...I am using the below for success scenario
index=app-axxfer-restricted queryType="ts"
(
(filename=FILE.PROD.CFSTFN.DT*.txt )
OR
(filename=FILE.PROD.CFSTFNTRG.txt )
OR
(filename=ORECFLAT.FNT554.CECFSTTRG*.txt )
)
status=1 |rename filename as FileName | table FileName| stats count(FileName)
↧