Hello everyone, I want to create an alert based on nginx logs using the Machine Learning Toolkit.  Basically, I would like to train a model to detect when a client (with an ID already in the logs) logs in, or attempts to log in, from an unusual location. Example: we have a client that usually connects from US East, but suddenly has a connection from Russia.  I have tried a few searches using iplocation, using DensityFunction and OneClassSVM, but haven't been able to create a model that correctly detects anomalies.  If anyone has any insight, or has done something like that before, I would appreciate the help.  ... View more