Every flow must start with a source filter. There are 2 available options:
Flow Source - Using an existing flow, multiselect or All data.
Field Label | Allowed Inputs | Default value | Description |
|---|---|---|---|
IDS | Multiselect, existing Flow Id or AllData. | Previous Flow Id or AllData if previous flow not present. | A list of sources to join into the flow. |
...
2. Source and Data filter - Using a simple query to filter only matching events.
The syntax is equivalent to XPLG Search syntax (queries) in order to allow to filter specific events from specific sources.
Field Label | Allowed Inputs | Default value | Description |
|---|---|---|---|
QUERY | Simple query. Examples:
| Empty | A simple query to filter only matching events. |
...