No data queryable from Cloudwatch Logs Lambda?
I've created a lambda function using the supplied code to ingest into a hosted HTTP source and it shows that there are events getting passed in but none of that data is queryable from a search of the collector.
I've tried removing the datetime parsing from the source just to see if that affects things (the datetime comes in with multiple formats in this Cloudwatch Log group) but it still doesn't return any data.
I've even tried following the data using a live tail with no results. I'm completely stumped as to what I'm missing
-
Official comment
Hi Joel,
If you can see the logs getting ingesting into Sumo but you are not seeing any results in your searches, than this needs to be investigated.
Can you run your searches with "Use Receipt Time" checkbox option and let us know if you are seeing the data as part of your search results?
It that works out for you can go through below KB article that has a very useful information about this behavior:
https://help.sumologic.com/Search/Get_Started_with_Search/How_to_Build_a_Search/Use_Receipt_Time
Let us know if this still doesn't help.
Thanks,
Rahul
Comment actions
Please sign in to leave a comment.
Comments
1 comment