Im trying to create an alert that will work like a directory monitor.
Essentially, I want to alert if FIle A is not received by 6 A.M. How can I search on an item that DOES NOT equal a certain time range. That's the only way I can think to do this.
Im having trouble determining how to write this in search. 1 P.M is greater than 6 A.M but the number itself is less than 6 AM and will show up.
The acceptable times of files receipt are from 12:00 A.M to 6:00 A.M
Here is an example of the event
2015-04-12 17:39:35 1X8.160.1X5.100 - baphlthpdf [416052]dele /reports/14673-P581_Stmt_P581MC12.TXT_TBR0OOU4M.zip - 250 - - - 22
host = exptldsftp01 source = D:\FTP Server settings\Logs\ex150412.log sourcetype = comm_globalscape
Any help will be greatly appreciated.
... View more