I am trying to:
- Find a date/time of a certain event.
- Take that date/time from number 1. and use it to search for events only from that date/time forward.
If the date/time from number 1 was September 1st at 1:45.. Then for number 2, I would only want to get back events from September 1st and forward (forgetting about events before that.)
I need this to be automatic in the searches because the date/time range from number 1 will change based upon different circumstances.
I tried subsearches to no avail.
I am using _time.
Thanks in advance!