I am trying to think of ways to proactively alert when there are bad video calls in our environment. I see that I can go to Browse -> select the fields I want to report and then create this as a new search and then create alerts based on it. I've added Jitter, Packet Loss, etc. to the search.
What I tried to do was create a
Trigger Conditions -> Custom ->
"numberPacketsLost > 100"
I get a "cannot parse search condition" error. I know that this is probably user error, since I just started using Splunk recently. Does anyone have any tips to facilitate something like this? I was just going to have it email me as a test and then eventually pump it into a Slack channel, or something along those lines.
... View more