This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
Webinar May 29th: Log Ingestion: Bindplane + Google SecOps
Log in to ask a question

Log source stopped sending logs-Alert

Posted on 02-14-2025 06:10 AM
Rached1996
Bronze 5
Bronze 5
Reply posted on --/--/---- --:-- AM

Hello, I want to perform an alerting notification in chronicle (not GCP), maybe a rule or dashboard visualisation about log source or a forwarder stopped sending logs, i want to do this on the siem directly without doing it on GCP 
For info i have GCP audit logs ingested in chronicle
Thanks

Solved Solved
0 2 211
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
AymanC
Silver 3
Silver 3
Reply posted on --/--/---- --:-- AM

Hi @Rached1996,

The following will likely be of use, modify this to look for metadata.log_type, as opposed to principal.hostname- Re: How to Configure Log Stoppage Alert for Indivi... - Google Cloud Community

Kind Regards,

Ayman

View solution in original post

Jump to Solution
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
AymanC
Silver 3
Silver 3
Reply posted on --/--/---- --:-- AM

Hi @Rached1996,

The following will likely be of use, modify this to look for metadata.log_type, as opposed to principal.hostname- Re: How to Configure Log Stoppage Alert for Indivi... - Google Cloud Community

Kind Regards,

Ayman

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Rached1996
Bronze 5
Bronze 5
Reply posted on --/--/---- --:-- AM

Thanks aymen 

Jump to Solution
0 Likes
Top Solution Authors
View all