https://github.com/Graylog2/graylog2-web-interface/issues/595 Would like to carry this over to here, I couldn't find any reference on this ideas site to default fields, or field defaults. It becomes cumbersome real fast to have to select on the fi...

An interface for users to create scheduled searches that result in an email with results if applicable would be great (or a viewable interface of results summaries from a user's historical scheduled searches). This is a functionality in Splunk an...

As an application developer, it's difficult for me to correlate errors/anomalies and so on if I cannot synchronize the query time for all of my charts. I would like to be able to use the same date/time picker used in search so I can synchronize al...

I don't currently use Elasticsearch or Mongo in production, and it would be awesome to have a command like `graylog backup <file> ` or `graylog restore <file>` so that I wouldn't have to integrate and learn the elasticsearch and mongo ...

As a system administrator I would like to be able to combine the 3 different alert conditions using flexible AND / OR rules. The use case is to get alerts when x number of messages (Message Count) matching "Field value condition" and / or matching...

Alerts should have a dedicated dashboard widget for nicer integration of alerts.

Hello! I miss the GROUP BY feature in graylog. For example, I want to create an Alert, which alert me, if one ip fails to login 10 times the last 10 minutes. Like in SQL, it wil be just a query like SELECT COUNT(*) FROM stream_ssh time > NOW() ...

Some people sometimes ask for PDF exports of the datas and graphs in order to show them during a meeting, for example. It could also be useful when using the Netflow input plugin, as tools like Nfsen have this feature.

Any plans to implement some advanced alerting features in graylog2? E.g. I have logs with ip addresses, user IDs and URLs. I want to get an alert if within 15 minutes any userid accesses certain URL from different IP addresses. In this case i wan...

As a system administrator, I would like to be able to change the color scheme in Graylog from being predominantly white to black/dark gray since it makes it easy to look at data in a NOC center (refer to Grafana dark mode)