timestamp used in search job


1 comment

  • Official comment
    Nick Wilson

    Hi Bharani,

    The "from" and "to" parameters refer to the time range of the message's parsed date/time value, not the receipt time of the message.

    So if you had a message that arrived today at 10:34 AM but the timestamp in the log itself was from 10:32 AM, the search API would be looking at the 10:32 AM value (the same as when you run a query within the Sumo UI without the "Use Receipt Time" box checked).

    I hope this helps!

    Customer Success, Sumo Logic

    Comment actions Permalink

Please sign in to leave a comment.