ElastAlert2 error #595

Closed Locked Answered by nsano-rururu

ngms17 asked this question in Q&A

ElastAlert2 error #595

Dec 3, 2021

· 1 comments · 2 replies

Answered by nsano-rururu Return to top

ngms17
Dec 3, 2021

When running my ElastAlert2 rule, it gives me this error:

ERROR:root:Error writing alert info to Elasticsearch: RequestError(400, 'mapper_parsing_exception', "failed to parse field [match_body.user_agent.os.version] of type [long] in document with id 'SRw1gH0BNdCWR85QSq-x'. Preview of field's value: '12.0.1'")

How can i solve this?

Answered by nsano-rururu

Yelp/elastalert#2747

View full answer

Replies: 1 comment 2 replies

nsano-rururu
Dec 3, 2021
Collaborator

Yelp/elastalert#2747

2 replies

nsano-rururu Dec 3, 2021
Collaborator

Yelp/elastalert#2567

nsano-rururu Dec 3, 2021
Collaborator

Yelp/elastalert#2358 (comment)

Answer selected by jertel

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment