Log Explorer search consists of a time range and a search query, mixing key:value and full-text search.
For example, to filter on logs produced by a specific service, with a specific status, over the past five minutes, you can create a custom query such as service:payment status:error rejected and set the time range to the Past 5 minutes:
Indexed Logs support both full-text search and key:value search queries.
Note: key:value queries require that you declare a facet beforehand.
Note: key:value queries do not require that you declare a facet beforehand.
To begin searching for logs in Log Explorer, see the Log Search Syntax documentation and read the time frame documentation for more details on custom time frames.
Additional helpful documentation, links, and articles:
