Is it possible to search in Graylog2 full messages using Quickfilter?
I can successfully search in short messages, but it seems like full messages can be filtered only using streams.
I need to filter old full messages and new stream is applied only to new messages. Is there any solution to this problem?
As of Graylog V2.1.2, the the field full_message can be searched like any other field.
You can directly search full_message:
full_message: "my full message string"
or search across all fields:
"my full message string"