From 6a40445cecc5b5b6310c269343f28b08705c13be Mon Sep 17 00:00:00 2001
From: Simplychee <simplychee@gmail.com>
Date: Tue, 27 Aug 2024 15:51:46 +0300
Subject: [PATCH 1/5] adding explore to quick start

---
 docs/user-guide/explore/best-practices.md | 157 ++++++++++++++++++++++
 docs/user-guide/quick-start.md            |  20 +--
 2 files changed, 169 insertions(+), 8 deletions(-)
 create mode 100644 docs/user-guide/explore/best-practices.md

diff --git a/docs/user-guide/explore/best-practices.md b/docs/user-guide/explore/best-practices.md
new file mode 100644
index 00000000..5cfd7f85
--- /dev/null
+++ b/docs/user-guide/explore/best-practices.md
@@ -0,0 +1,157 @@
+---
+sidebar_position: 2
+title: Explore Best Practices
+description: Best practices in Log management and Explore
+image: https://dytvr9ot2sszz.cloudfront.net/logz-docs/social-assets/docs-social.jpg
+keywords: [logz.io, explore, dashboard, log analysis, observability]
+---
+
+Once you've sent your data to Logz.io, you can search and query your logs to identify, debug, and monitor issues as quickly and effectively as possible.
+
+Explore supports a few query methods, including:
+
+
+## Simple
+
+Logz.io offers an intuative and easy way to build your query. Click the search bar or start typing to find and select fields, conditions, and values. 
+
+Build your query by selecting fields, parameters, and conditions. To add a value that doesn't appear in your logs, type its name and click on the + sign. You can also add free text to your search, which will convert it into a Lucene query.
+
+/// ADD MORE INFO HERE 
+
+
+## Lucene 
+
+Logz.io supports Lucene, an open-source search engine software library.
+
+With Lucene, you can search for free text by typing the text string you want to find; for example, `error` will return all words containing this string, and using quotation marks, `"error"`, will return only the specific word you're searching for.
+
+![See error](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/best-error-aug27.png)
+
+Use the filters to refine your search. For example, you can filter out all of the eventType fields that are `Modified`.
+
+![Filter out](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/isnot-filter-aug27.png)
+
+The filters include numeric based fields, such as `LogSize`. Choose the operator and value to view the relevant results. 
+
+![numeric filters](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/logsize-explore-aug27.png)
+
+
+
+
+
+### Apply regex to search
+
+:::caution
+Using Regex can overload your system and cause performance issues in your account. If Regex is necessary, it's best to apply filters and use shorter timeframes.
+:::
+
+Logz.io uses Apache Lucene's regular expression engine to parse regex queries, supporting regexp and query_string.
+
+While Lucene's regex supports all Unicode characters, several characters are reserved as operators and cannot be searched on their own:
+
+`. ? + * | { } [ ] ( ) " \`
+
+Depending on the optional operators enabled, some additional characters may also be reserved. These characters are:
+
+`# @ & < >  ~`
+
+However, you can still use reserved characters by applying a backslash or double-quotes. For example:
+
+`\*` will render as a * sign.
+
+`\#` will render as a # sign.
+
+`\()` will render as brackets.
+
+
+To use Regex in a search query in OpenSearch, you'll need to use the following template:
+
+`fieldName:/.*value.*/`.
+
+For example, you have a field called `sentence` that holds the following line: "The quick brown fox jumps over the lazy dog".
+
+To find one of the values in the field, such as `fox`, you'll need to use the following query:
+
+`sentence:/.*fox.*/`.
+
+// DIDNT EDIT BELOW THIS LINE
+
+## Enrich log results
+
+You can add additional columns to your logs field view.
+
+Find the field you'd like to add, hover over it and click on the **+** button.
+
+![Add field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-discover.png)
+
+Once the field is added, you can move or remove it using its inner menu.
+
+![Edit field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-overview.gif)
+
+Finally, you can save your search and its view by clicking on the **Save** option, at the top navigation bar.
+
+![Save field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/save-your-fields.png)
+
+## Filter log results
+
+To narrow down your search, click the **Add filter** option underneath the search bar.
+
+Choose the field, operator, and value you'd like to apply in your filter, and click save. You can also create a custom label to rename the filter for better identification.
+
+![Apply a filter](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-a-filter.png)
+
+Once you've set your filter, clicking on it will open additional abilities such as pinning it across all apps, excluding results, temporarily disabling it, editing, or deleting it.
+
+## Select logs' time frame
+
+The default period to display results is 15 minutes. You can edit this time frame by clicking on the **Show dates** link or clicking on the calendar icon.
+
+The calendar icon offers popular time frames for you to choose from and lets you select the refresh rate of your data.
+
+![Time frame options](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/quick-time-edits.png)
+
+The **Show dates** option lets you set a start and end time. In the popup, select between the following options:
+
+* **Relative** - Set a start and end date to view your data
+* **Now** - Get real-time troubleshooting and monitoring of your logs
+* **Absolute** - Browse the calendar view and choose any time frame to view your data. In this option, you can type the time frame you want to view
+
+![Choose time frame](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/time-settings-gif.gif)
+
+## Create Log Visualizations
+
+In the following video, you'll be able to see how to create a visualization dashboard based on your logs:
+
+
+<div>
+    <video width="100%" height="auto" controls autoplay loop muted>
+      <source src="https://dytvr9ot2sszz.cloudfront.net/logz-docs/videos/log-visualizations-velcfd5tpr.mp4" type="video/mp4" />
+      Your browser does not support the video tag.
+    </video>
+</div>
+
+
+
+<div style={{position: 'relative', paddingBottom: '56.25%'}}>
+  <iframe style={{position: 'absolute', top: '0', left: '0', width: '100%', height: '100%'}} src="https://fast.wistia.com/embed/iframe/velcfd5tpr" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
+</div>
+
+## Divide your log data
+
+You can divide logs from different environments by type, by utilizing Logz.io's sub accounts option.
+
+Create a sub account and configure it to receive the same logs as an existing account, mapping it as a different data type.
+
+For example, if a `metadata` field is assigned as an `Object` in your production environment, you can assign it as a `String` in your testing environment by creating a sub account to which you’ll send the same logs.
+
+You can also send data from each environment to a dedicated sub account to monitor them individually.
+
+Learn more about [creating and managing sub accounts](/docs/user-guide/admin/logzio-accounts/manage-the-main-account-and-sub-accounts) and about [field mapping](/docs/user-guide/data-hub/field-mapping/) in your account.
+
+## Additional resources
+
+* [Configure an alert](https://docs.logz.io/docs/user-guide/log-management/log-alerts/configure-alert/)
+* [Use Insights to detect new exceptions and critical errors](https://docs.logz.io/docs/user-guide/log-management/insights/ai-insights/)
+* [Use Live tail to get a live view of your logs](https://docs.logz.io/docs/user-guide/log-management/live-tail/)
+
diff --git a/docs/user-guide/quick-start.md b/docs/user-guide/quick-start.md
index 4a4afa89..bef850a0 100644
--- a/docs/user-guide/quick-start.md
+++ b/docs/user-guide/quick-start.md
@@ -34,26 +34,30 @@ If you prefer to send your data manually, Logz.io offers numerous methods to do
 | --- | --- | --- | --- |
 |[Filebeat](https://app.logz.io/#/dashboard/integrations/Filebeat-data)|[.NET](https://app.logz.io/#/dashboard/integrations/dotnet)|[Jaeger installation](https://app.logz.io/#/dashboard/integrations/Jaeger-data)|[Cloudflare](https://app.logz.io/#/dashboard/integrations/Cloudflare-network)
 |[S3 Bucket](https://app.logz.io/#/dashboard/integrations/AWS-S3-Bucket)|[Prometheus](https://app.logz.io/#/dashboard/integrations/Prometheus-remote-write)|[OpenTelemetry installation](https://app.logz.io/#/dashboard/integrations/OpenTelemetry-data)|[NGINX](https://app.logz.io/#/dashboard/integrations/Nginx-load)
-|[cURL](https://app.logz.io/#/dashboard/integrations/cURL-data)|[Azure Kubernetes Service](https://app.logz.io/#/dashboard/integrations/Kubernetes)|[Docker](https://app.logz.io/#/dashboard/integrations/Docker)|[Active directory](https://app.logz.io/#/dashboard/integrations/Active-Directory)
-|[JSON uploads](https://app.logz.io/#/dashboard/integrations/JSON)|[Google Kubernetes Engine over OpenTelemetry](https://app.logz.io/#/dashboard/integrations/Kubernetes)|[Kubernetes](https://app.logz.io/#/dashboard/integrations/Kubernetes)|[CloudTrail](https://app.logz.io/#/dashboard/integrations/AWS-CloudTrail)
-|[Docker container](https://app.logz.io/#/dashboard/integrations/Docker)|[Amazon EC2](https://app.logz.io/#/dashboard/integrations/AWS-EC2)|[Go instrumentation](https://app.logz.io/#/dashboard/integrations/GO)|[Auditbeat](https://app.logz.io/#/dashboard/integrations/auditbeat) |
+|[cURL](https://app.logz.io/#/dashboard/integrations/cURL-data)|[Java](https://app.logz.io/#/dashboard/integrations/Java)|[Docker](https://app.logz.io/#/dashboard/integrations/Docker)|[Active directory](https://app.logz.io/#/dashboard/integrations/Active-Directory)
+|[HTTP uploads](https://app.logz.io/#/dashboard/integrations/HTTP)|[Node.js](https://app.logz.io/#/dashboard/integrations/Node-js)|[Kubernetes](https://app.logz.io/#/dashboard/integrations/Kubernetes)|[CloudTrail](https://app.logz.io/#/dashboard/integrations/AWS-CloudTrail)
+|[Python](https://app.logz.io/#/dashboard/integrations/Python)|[Amazon EC2](https://app.logz.io/#/dashboard/integrations/AWS-EC2)|[Go instrumentation](https://app.logz.io/#/dashboard/integrations/GO)|[Auditbeat](https://app.logz.io/#/dashboard/integrations/auditbeat) |
 
-Browse the complete list of available shipping methods [here](https://docs.logz.io/docs/category/send-your-data/).
+Browse the complete list of available shipping methods [here](https://app.logz.io/#/dashboard/integrations/collectors).
 
-To learn more about shipping your data, check out **Shipping Log Data to Logz.io**:
+<!-- To learn more about shipping your data, check out **Shipping Log Data to Logz.io**:
 
 
 <div style={{position: 'relative', paddingBottom: '56.25%'}}>
   <iframe style={{position: 'absolute', top: '0', left: '0', width: '100%', height: '100%'}} src="https://fast.wistia.com/embed/iframe/oi6qydmyk6" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
 </div>
 
+-->
+
 ### Parsing your data
 
 Logz.io offers automatic parsing [for over 50 log types](https://docs.logz.io/docs/user-guide/data-hub/log-parsing/default-parsing/).
 
 If you can't find your log type, or if you're interested in sending custom logs, Logz.io will parse the logs for you. Parsing-as-a-service is included in your Logz.io subscription; just open a chat with our **Support team** with your request, you can also email us at [help@logz.io](mailto:help@logz.io).
 
-###### Additional resources
+<h4 id="logs-resources"> Additional resources </h4>
+
+//START HERE
 
 
 Learn more about sending data to Logz.io:
@@ -65,9 +69,9 @@ Learn more about sending data to Logz.io:
 
 ### Explore your data with Logz.io's Log Management platform
 
-Logz.io’s **[Log Management](https://app.logz.io/#/dashboard/osd)** is where you can search and query log files. You can use it to identify and analyze your code, and the platform is optimized for debugging and troubleshooting issues as quickly and effectively as possible.
+Logz.io's [Explore](https://app.logz.io/#/dashboard/explore) is where you can view, search, and query your data. Use it to identify and analyze your code, debug and troubleshoot issues, and get recommendations to next steps with its AI Assistant.
 
-![Log management overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/log-analytics-main-sep26.png)
+![Log management overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/explore-aug27.png)
 
 The following list contains some of the common abilities available in Log Management:
 

From 8b37c0826fd21ced2cdb99fe31e866d1bd682ba4 Mon Sep 17 00:00:00 2001
From: Simplychee <simplychee@gmail.com>
Date: Wed, 28 Aug 2024 15:15:44 +0300
Subject: [PATCH 2/5] more edits

---
 docs/user-guide/explore/best-practices.md | 51 +++++++++++++++++------
 docs/user-guide/quick-start.md            |  5 +--
 2 files changed, 39 insertions(+), 17 deletions(-)

diff --git a/docs/user-guide/explore/best-practices.md b/docs/user-guide/explore/best-practices.md
index 5cfd7f85..3d1f1fd4 100644
--- a/docs/user-guide/explore/best-practices.md
+++ b/docs/user-guide/explore/best-practices.md
@@ -1,5 +1,5 @@
 ---
-sidebar_position: 2
+sidebar_position: 6
 title: Explore Best Practices
 description: Best practices in Log management and Explore
 image: https://dytvr9ot2sszz.cloudfront.net/logz-docs/social-assets/docs-social.jpg
@@ -15,10 +15,11 @@ Explore supports a few query methods, including:
 
 Logz.io offers an intuative and easy way to build your query. Click the search bar or start typing to find and select fields, conditions, and values. 
 
-Build your query by selecting fields, parameters, and conditions. To add a value that doesn't appear in your logs, type its name and click on the + sign. You can also add free text to your search, which will convert it into a Lucene query.
+Build your query by selecting fields, parameters, and conditions. Start typing to see all the relevant fields available, add an operator, and select the value. To add a custom value that doesn't appear in your logs, type its name and click on the + sign to apply it.
 
-/// ADD MORE INFO HERE 
+Click Enter to apply the query, or tab to build the next condition. 
 
+You can also type free text in your search, which will convert it into a Lucene query.
 
 ## Lucene 
 
@@ -26,18 +27,39 @@ Logz.io supports Lucene, an open-source search engine software library.
 
 With Lucene, you can search for free text by typing the text string you want to find; for example, `error` will return all words containing this string, and using quotation marks, `"error"`, will return only the specific word you're searching for.
 
-![See error](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/best-error-aug27.png)
+//![See error](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/best-error-aug27.png)
 
-Use the filters to refine your search. For example, you can filter out all of the eventType fields that are `Modified`.
+Use the filters to refine your search. For example, you can filter out all `log_type:info` to focus your search on relevant finds.
 
-![Filter out](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/isnot-filter-aug27.png)
+//![Filter out](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/isnot-filter-aug27.png)
 
 The filters include numeric based fields, such as `LogSize`. Choose the operator and value to view the relevant results. 
 
 ![numeric filters](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/logsize-explore-aug27.png)
 
+To search for a value in a specific field, use the following syntax:
 
+`log_level:ERROR`
 
+Use the boolean operators AND, OR, and NOT to create more complex searches. For example, to search for a specific status that doesn't contain a certain word:
+
+`log_level:ERROR AND Kubernetes`
+
+If you want to perform **range-related searches**, the fields must be mapped as numbers (long, float, double, etc.). Then, you can use the following syntax. For example, you can use it to find all status codes between 400-499:
+
+`LogSize:[2000 TO 3000]`
+
+To make your search more complex, you can find status codes 400-499 with the extension php:
+
+`LogSize:[2000 TO 3000] AND eventType:MODIFIED`
+
+Or, find status codes 400-499 with the extension php or html:
+
+`LogSize:[2000 TO 3000] AND logzio-signature:[700000000 TO 710000000]`
+
+To exclude a term from your search, you can use the following syntax:
+
+`LogSize:[2000 TO 3000] AND type NOT (name:"agent-k8s")`
 
 
 ### Apply regex to search
@@ -77,21 +99,24 @@ To find one of the values in the field, such as `fox`, you'll need to use the fo
 
 // DIDNT EDIT BELOW THIS LINE
 
-## Enrich log results
+## Edit log view
+
+You can add additional columns to your logs table view.
+
+Find the field you'd like to add, hover over it and click the **Toggle column in table** button.
+
 
-You can add additional columns to your logs field view.
 
-Find the field you'd like to add, hover over it and click on the **+** button.
+//![Add field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-discover.png)
 
-![Add field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-discover.png)
+Once added, you can drag it to reposition it, or click the **X** to remove it.
 
-Once the field is added, you can move or remove it using its inner menu.
 
-![Edit field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-overview.gif)
+//![Edit field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-overview.gif)
 
 Finally, you can save your search and its view by clicking on the **Save** option, at the top navigation bar.
 
-![Save field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/save-your-fields.png)
+//![Save field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/save-your-fields.png)
 
 ## Filter log results
 
diff --git a/docs/user-guide/quick-start.md b/docs/user-guide/quick-start.md
index bef850a0..d41fdf7a 100644
--- a/docs/user-guide/quick-start.md
+++ b/docs/user-guide/quick-start.md
@@ -57,9 +57,6 @@ If you can't find your log type, or if you're interested in sending custom logs,
 
 <h4 id="logs-resources"> Additional resources </h4>
 
-//START HERE
-
-
 Learn more about sending data to Logz.io:
 
 * [Use Logz.io API](https://api-docs.logz.io/docs/logz/logz-io-api/)
@@ -73,7 +70,7 @@ Logz.io's [Explore](https://app.logz.io/#/dashboard/explore) is where you can vi
 
 ![Log management overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/explore-aug27.png)
 
-The following list contains some of the common abilities available in Log Management:
+//The following list contains some of the common abilities available in Log Management:
 
 * **[Log Management best practices](https://docs.logz.io/docs/user-guide/log-management/opensearch-dashboards/opensearch-best-practices/)**
 * **[Configuring an alert](https://app.logz.io/#/dashboard/alerts/v2019/new)**

From a9728557aca1cdefbcab243234a116314812b156 Mon Sep 17 00:00:00 2001
From: Simplychee <simplychee@gmail.com>
Date: Wed, 4 Sep 2024 13:42:36 +0300
Subject: [PATCH 3/5] updates

---
 docs/user-guide/quick-start.md | 85 ++++++++++++++++------------------
 1 file changed, 40 insertions(+), 45 deletions(-)

diff --git a/docs/user-guide/quick-start.md b/docs/user-guide/quick-start.md
index d41fdf7a..c5abe904 100644
--- a/docs/user-guide/quick-start.md
+++ b/docs/user-guide/quick-start.md
@@ -8,27 +8,19 @@ keywords: [logs, metrics, traces, logz.io, getting started]
 ---
 
 
+Logz.io is a scalable, end-to-end cloud monitoring service that combines the best open-source tools with a fully managed SaaS platform. It provides unified log, metric, and trace collection with AI/ML-enhanced features for improved troubleshooting, faster response times, and cost management.
 
-
-Logz.io is an end-to-end cloud monitoring service built for scale. It’s the best-of-breed open source monitoring tools on a fully managed cloud service.
-
-One unified SaaS platform to collect and analyze logs, metrics, and traces, combined with human-powered AI/ML features to improve troubleshooting, reduce response time and help you manage costs.
-
-
-Whether you are a new user or looking for a refresher on Logz.io, you are invited to join one of our engineers for a **[training session on the Logz.io platform](https://logz.io/training/)**!
-
+Whether you’re new to Logz.io or need a refresher, join one us for a **[training session on the Logz.io platform](https://logz.io/training/)**!
 
 ## Send your data to Logz.io
 
-Once you’ve set up your account, you can start sending your data.
-
-Logz.io provides various tools, integrations, and methods to send data and monitor your Logs, Metrics, Traces, and SIEM.
+After setting up your account, you can start sending your data to Logz.io using various tools, integrations, and methods for monitoring Logs, Metrics, Traces, and SIEM.
 
-The fastest and most seamless way to send your data is through our **Telemetry Collector**. It lets you easily configure your data-sending process by executing a single line of code, providing a complete observability platform to monitor and improve your logs, metrics, and traces.
+The quickest way is through our **Telemetry Collector**, which simplifies data configuration with a single line of code, enabling full observability across your systems.
 
 [**Get started with Telemetry Collector**](https://app.logz.io/#/dashboard/integrations/collectors?tags=Quick%20Setup).
 
-If you prefer to send your data manually, Logz.io offers numerous methods to do so, and here are some of the more popular ones based on what you’d like to monitor:
+If you prefer a manual approach, Logz.io offers multiple methods tailored to different monitoring needs. Here are some popular options:
 
 |**Logs**|**Metrics**|**Traces**|**Cloud SIEM**|
 | --- | --- | --- | --- |
@@ -51,9 +43,11 @@ Browse the complete list of available shipping methods [here](https://app.logz.i
 
 ### Parsing your data
 
-Logz.io offers automatic parsing [for over 50 log types](https://docs.logz.io/docs/user-guide/data-hub/log-parsing/default-parsing/).
+Logz.io automatically parses [over 50 log types](https://docs.logz.io/docs/user-guide/data-hub/log-parsing/default-parsing/). 
+
+If your log type isn't listed, or you want to send custom logs, we offer parsing-as-a-service as part of your subscription. Just reach out to our **Support team** via chat or email us at [help@logz.io](mailto:help@logz.io?subject=Parse%20my%20data) with your request.
+
 
-If you can't find your log type, or if you're interested in sending custom logs, Logz.io will parse the logs for you. Parsing-as-a-service is included in your Logz.io subscription; just open a chat with our **Support team** with your request, you can also email us at [help@logz.io](mailto:help@logz.io).
 
 <h4 id="logs-resources"> Additional resources </h4>
 
@@ -64,31 +58,35 @@ Learn more about sending data to Logz.io:
 * [Log shipping troubleshooting](https://docs.logz.io/docs/user-guide/log-management/troubleshooting/log-shipping-troubleshooting/)
 * [Troubleshooting Filebeat](https://docs.logz.io/docs/user-guide/log-management/troubleshooting/troubleshooting-filebeat/)
 
-### Explore your data with Logz.io's Log Management platform
+### Navigate your logs with Logz.io Explore
 
-Logz.io's [Explore](https://app.logz.io/#/dashboard/explore) is where you can view, search, and query your data. Use it to identify and analyze your code, debug and troubleshoot issues, and get recommendations to next steps with its AI Assistant.
+Logz.io's [Explore](https://app.logz.io/#/dashboard/explore) lets you view, search, and query your data to analyze code, debug issues, and get guidance with its integrated AI Assistant.
 
 ![Log management overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/explore-aug27.png)
 
-//The following list contains some of the common abilities available in Log Management:
+Key capabilities in Explore include:
 
-* **[Log Management best practices](https://docs.logz.io/docs/user-guide/log-management/opensearch-dashboards/opensearch-best-practices/)**
+* **[Explore best practices](https://docs.logz.io/docs/user-guide/explore/best-practices)**
 * **[Configuring an alert](https://app.logz.io/#/dashboard/alerts/v2019/new)**
+* **[Review and investigate exceptions](https://docs.logz.io/docs/user-guide/explore/exceptions)**
+
+<!-- 
 * Using **[Logz.io's pattern engine](https://docs.logz.io/docs/user-guide/log-management/opensearch-dashboards/opensearch-patterns/)** to automatically group logs with similar message fields by their frequency of occurrence
 * **[Reviewing your fields' mapping](https://docs.logz.io/docs/user-guide/data-hub/field-mapping/)**
 * Using **[Optimizers](https://docs.logz.io/docs/user-guide/log-management/long-term-storage/optimizers/)** to store logs and aggregations to a timeless account
 * Predicting exceptions and critical errors with **Insights**
+-->
 
 
 ## Create visualizations with Logz.io's Infrastructure Monitoring
 
-Monitor your **[Infrastructure Monitoring](https://app.logz.io/#/dashboard/metrics)** to gain a clear picture of the ongoing status of your distributed cloud services at all times.
 
-Logz.io's Infrastructure Monitoring lets your team curate a handy roster of dashboards to oversee continuous deployment, CI/CD pipelines, prevent outages, manage incidents, and remediate crashes in multi-microservice environments and hybrid infrastructures and complex tech stacks.
+Logz.io's **[Infrastructure Monitoring](https://app.logz.io/#/dashboard/metrics)** provides real-time visibility into the status of your distributed cloud services. It enables your team to create custom dashboards to oversee deployments, manage incidents, and prevent outages in complex environments.
+
 
 ![Infrastructure Monitoring overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/metrics-overview-sep26.png)
 
-Once you've sent your metrics to Logz.io, you can:
+After sending your metrics to Logz.io, you can:
 
 ### Build Metrics visualizations with Logz.io
 
@@ -98,22 +96,22 @@ Once you've sent your metrics to Logz.io, you can:
 
 You can also:
 
-* **[Create Metrics related alerts](https://docs.logz.io/docs/user-guide/Infrastructure-monitoring/metrics-alert-manager/)**
-* Work with **[Dashboard variable](https://docs.logz.io/docs/user-guide/infrastructure-monitoring/variables/)** to apply filters on your dashboards and drilldown links
+* **[Create metrics-based alerts](https://docs.logz.io/docs/user-guide/Infrastructure-monitoring/metrics-alert-manager/)**
+* Use **[Dashboard variable](https://docs.logz.io/docs/user-guide/infrastructure-monitoring/variables/)** for filtering and drilldowns
 * Mark events on your Metrics dashboard based on data from a logging account, with **[Annotations](https://docs.logz.io/docs/user-guide/infrastructure-monitoring/log-correlations/annotations/)**
 
-###### Additional resources
+<h4 id="metrics-resources"> Additional resources </h4>
 
 * [Sending Prometheus metrics to Logz.io](https://logz.io/learn/sending-prometheus-metrics-to-logzio/)
 
 
-## Dive deeper into the code with Logz.io's Distributed Tracing
+## Dive deeper with Logz.io's Distributed Tracing
 
-Use Logz.io’s **[Distributed Tracing](https://app.logz.io/#/dashboard/jaeger)** to look under the hood at how your microservices behave, and access rich information to improve performance, investigate, and troubleshoot issues.
+Leverage Logz.io’s **[Distributed Tracing](https://app.logz.io/#/dashboard/jaeger)** to gain deep insights into your microservices' behavior, enhancing performance and streamlining investigation and troubleshooting.
 
 ![Distributed Tracing overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/traces-overview-sep26.png)
 
-To help you understand how Distributed Tracing can enhance your data, check out the following guides:
+To make the most of Distributed Tracing, check out these guides:
 
 * **[Getting started with Tracing](https://docs.logz.io/docs/user-guide/distributed-tracing/set-up-tracing/get-started-tracing/)**
 * **[Sending demo traces with HOTROD](https://docs.logz.io/docs/user-guide/distributed-tracing/set-up-tracing/hotrod/)**
@@ -123,21 +121,21 @@ To help you understand how Distributed Tracing can enhance your data, check out
 
 ## Secure your environment with Logz.io's Cloud SIEM
 
-Logz.io **[Cloud SIEM](https://app.logz.io/#/dashboard/security/summary)** (Security Information and Event Management) aggregates security logs and alerts across distributed environments to allow your team to investigate security incidents from a single observability platform.
+Logz.io **[Cloud SIEM](https://app.logz.io/#/dashboard/security/summary)** (Security Information and Event Management) consolidates security logs and alerts across distributed environments, enabling your team to investigate incidents from a single observability platform.
 
 ![Cloud SIEM overview](https://dytvr9ot2sszz.cloudfront.net/logz-docs/accounts/SIEM-overview-sep26.png)
 
-Here are some popular Cloud SIEM resources to help you get started:
+Get Started with Cloud SIEM:
 
-* **[Cloud SIEM quick start guide](https://docs.logz.io/docs/category/cloud-siem-quick-start-guide/)** 
+* **[Quick start guide](https://docs.logz.io/docs/category/cloud-siem-quick-start-guide/)** 
 * **[Investigate security events](https://docs.logz.io/docs/user-guide/cloud-siem/investigate-events/security-events/)**
 * **[Threat Intelligence feeds](https://docs.logz.io/docs/user-guide/cloud-siem/threat-intelligence/)**
-* **[Configure a security rule](https://docs.logz.io/docs/user-guide/cloud-siem/security-rules/manage-security-rules/)**
+* **[Configure security rules](https://docs.logz.io/docs/user-guide/cloud-siem/security-rules/manage-security-rules/)**
 * **[Dashboards and reports](https://docs.logz.io/docs/user-guide/cloud-siem/dashboards/)**
 
 ## Manage and optimize your Logz.io account
 
-Logz.io's account admins can control and edit different elements inside their accounts. These abilities include setting up SSO access, assigning permissions per user, and sharing and managing data.
+Admins can control user permissions, manage accounts, set up SSO, and handle data archiving.
 
 The following list explores the more common use cases for Logz.io's account admins:
 
@@ -159,9 +157,7 @@ In addition, Logz.io's Data Hub helps you manage and optimize your Logz.io produ
 
 ## Get a detailed overview with the Home Dashboard 
 
-Home Dashboard includes your account’s data, logs, metrics, traces, alerts, exceptions, and insights. 
-
-You can quickly access the Home Dashboard by clicking on the **Home** icon in the navigation. 
+The [Home Dashboard](https://app.logz.io/#/dashboard/home) provides a comprehensive view of your account's data, including logs, metrics, traces, alerts, and insights. Access it by clicking the Home icon in the navigation.
 
 [Learn how to utilize your Home Dashboard](/docs/user-guide/home-dashboard/).
 
@@ -169,9 +165,9 @@ You can quickly access the Home Dashboard by clicking on the **Home** icon in th
 
 
 
-### 1. Choose elements to view
+### 1. Customize your view
 
-You can choose which elements you want to view; logs, metrics, traces, number of alerts triggered, and insights gathered within the selected time frame. Click on one of the boxes to add or remove them from your view. The graph and chart will be updated immediately. 
+Select elements like logs, metrics, and traces to display or hide, with immediate graph and table updates. Click on one of the boxes to add or remove them from your view. The graph and chart will be updated immediately. 
 
 For example, clicking on Insights or Exceptions will remove all of them from the graph and the table, allowing you to shift your focus according to your monitoring needs.
 
@@ -180,26 +176,25 @@ For example, clicking on Insights or Exceptions will remove all of them from the
 
 ### 2. Graph overview
 
-This is a visual representation of your account’s data. Hover over the graph to see a breakdown of elements per hour. This view includes the number of overall and unique events.
+Visualize data over time and explore detailed event breakdowns.
 
 ![Graph hover view](https://dytvr9ot2sszz.cloudfront.net/logz-docs/home-dashboard/graph-hover-view.png)
 
 
 ### 3. Table overview
 
-At the bottom of the page, you can view your account's data as a table. The data is broken down by events, and you can view each event’s type, severity, number of grouped events, and the date on which the event was last triggered. 
+At the bottom of the page, your data is displayed in a table format, breaking down events by type, severity, grouped count, and the date they were last triggered.
 
-When hovering over one of the events you'll see an **Investigate** button, which opens it in OpenSearch Dashboards, allowing you to drill down further into the issue.
+Hover over an event to reveal the **Investigate** button, which opens the event in OpenSearch Dashboards for deeper analysis.
 
 ![Investigate button](https://dytvr9ot2sszz.cloudfront.net/logz-docs/home-dashboard/investigate-button.png)
 
 ### 4. Search and access dashboards
 
-Home Dashboard offers easy access to your logs and metrics dashboards, allowing you to search any available dashboard across your account. Start typing to search throughout your available dashboards, and click on one of the options to open it in a new tab. This view includes which dashboards you've viewed recently, and you can add critical or important dashboards to your favorites for quick access.
+The Home Dashboard provides quick access to your logs and metrics dashboards, enabling you to search across all available dashboards in your account. Simply start typing to find a specific dashboard, and click to open it in a new tab. The view also shows recently accessed dashboards, and you can mark essential ones as favorites for easy access.
 
 ### 5. Set your time frame
 
-The top of the page indicates when the data was last updated, helping you keep up to date with the data.
-
-You can change the time range to view data from the last 24 hours and up until from the last 2 hours. Once you choose a different time frame, Home Dashboard will update to reflect the relevant data.
+The top of the page shows the last data update, helping you stay current.
 
+You can adjust the time range to view data from the last 2 to 24 hours. The Home Dashboard will then refresh to display data for the selected period.

From 0db401b4f31ad8b1b226338794f08bec772097ba Mon Sep 17 00:00:00 2001
From: Simplychee <simplychee@gmail.com>
Date: Mon, 9 Sep 2024 14:28:26 +0300
Subject: [PATCH 4/5] updating images

---
 docs/user-guide/explore/best-practices.md | 112 +++++-----------------
 1 file changed, 24 insertions(+), 88 deletions(-)

diff --git a/docs/user-guide/explore/best-practices.md b/docs/user-guide/explore/best-practices.md
index 3d1f1fd4..19e71891 100644
--- a/docs/user-guide/explore/best-practices.md
+++ b/docs/user-guide/explore/best-practices.md
@@ -11,33 +11,23 @@ Once you've sent your data to Logz.io, you can search and query your logs to ide
 Explore supports a few query methods, including:
 
 
-## Simple
+## Simple Search
 
-Logz.io offers an intuative and easy way to build your query. Click the search bar or start typing to find and select fields, conditions, and values. 
+Logz.io offers an intuitive and easy way to build your query. You can build queries easily by selecting fields, conditions, and values.
 
-Build your query by selecting fields, parameters, and conditions. Start typing to see all the relevant fields available, add an operator, and select the value. To add a custom value that doesn't appear in your logs, type its name and click on the + sign to apply it.
+Click the search bar or type to see available fields, add operators, and choose values. To use custom values, type the name and click the + sign. Press Enter to apply the query or Tab to add another condition. 
 
-Click Enter to apply the query, or tab to build the next condition. 
-
-You can also type free text in your search, which will convert it into a Lucene query.
+Free-text searches automatically convert into Lucene queries.
 
 ## Lucene 
 
-Logz.io supports Lucene, an open-source search engine software library.
-
-With Lucene, you can search for free text by typing the text string you want to find; for example, `error` will return all words containing this string, and using quotation marks, `"error"`, will return only the specific word you're searching for.
-
-//![See error](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/best-error-aug27.png)
-
-Use the filters to refine your search. For example, you can filter out all `log_type:info` to focus your search on relevant finds.
-
-//![Filter out](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/isnot-filter-aug27.png)
+Logz.io supports Lucene for more advanced queries.
 
-The filters include numeric based fields, such as `LogSize`. Choose the operator and value to view the relevant results. 
+Search for free text by typing the text string you want to find; for example, `error` will return all words containing this string, and using quotation marks, `"error"`, will return only the specific word you're searching for.
 
-![numeric filters](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/logsize-explore-aug27.png)
+![See error](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/basic-search-search-word.png)
 
-To search for a value in a specific field, use the following syntax:
+Search for a value in a specific field:
 
 `log_level:ERROR`
 
@@ -45,7 +35,7 @@ Use the boolean operators AND, OR, and NOT to create more complex searches. For
 
 `log_level:ERROR AND Kubernetes`
 
-If you want to perform **range-related searches**, the fields must be mapped as numbers (long, float, double, etc.). Then, you can use the following syntax. For example, you can use it to find all status codes between 400-499:
+To perform **range-related searches**, fields must be mapped as numbers (long, float, double, etc.). Then, you can use the following syntax. For example, you can use it to find all status codes between 400-499:
 
 `LogSize:[2000 TO 3000]`
 
@@ -62,10 +52,18 @@ To exclude a term from your search, you can use the following syntax:
 `LogSize:[2000 TO 3000] AND type NOT (name:"agent-k8s")`
 
 
+## Filters
+
+Use the filters to refine your search, whether you're using Simple or Lucene. Open string fields to view its related values, and open numeric fields to choose a range. For example, `LogSize` lets you select the size of the logs you're interested in:
+
+![numeric filters](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/logsize-explore-aug27.png)
+
+
+
 ### Apply regex to search
 
 :::caution
-Using Regex can overload your system and cause performance issues in your account. If Regex is necessary, it's best to apply filters and use shorter timeframes.
+Using regex can overload your system and cause performance issues in your account. If regex is necessary, it is best to apply filters and use shorter timeframes.
 :::
 
 Logz.io uses Apache Lucene's regular expression engine to parse regex queries, supporting regexp and query_string.
@@ -97,86 +95,24 @@ To find one of the values in the field, such as `fox`, you'll need to use the fo
 
 `sentence:/.*fox.*/`.
 
-// DIDNT EDIT BELOW THIS LINE
 
-## Edit log view
+## Edit log table view
 
 You can add additional columns to your logs table view.
 
 Find the field you'd like to add, hover over it and click the **Toggle column in table** button.
 
-
-
-//![Add field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-discover.png)
+![Add field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/toggle-in-table-sep9.png)
 
 Once added, you can drag it to reposition it, or click the **X** to remove it.
 
+Save your query to quickly access it whenever needed. The query is saved while the results change according to your chosen relevant time frame.
 
-//![Edit field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-field-overview.gif)
-
-Finally, you can save your search and its view by clicking on the **Save** option, at the top navigation bar.
-
-//![Save field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/save-your-fields.png)
-
-## Filter log results
-
-To narrow down your search, click the **Add filter** option underneath the search bar.
-
-Choose the field, operator, and value you'd like to apply in your filter, and click save. You can also create a custom label to rename the filter for better identification.
-
-![Apply a filter](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/add-a-filter.png)
+![Save field](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/saved-search-sep9.png)
 
-Once you've set your filter, clicking on it will open additional abilities such as pinning it across all apps, excluding results, temporarily disabling it, editing, or deleting it.
 
 ## Select logs' time frame
 
-The default period to display results is 15 minutes. You can edit this time frame by clicking on the **Show dates** link or clicking on the calendar icon.
-
-The calendar icon offers popular time frames for you to choose from and lets you select the refresh rate of your data.
-
-![Time frame options](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/quick-time-edits.png)
-
-The **Show dates** option lets you set a start and end time. In the popup, select between the following options:
-
-* **Relative** - Set a start and end date to view your data
-* **Now** - Get real-time troubleshooting and monitoring of your logs
-* **Absolute** - Browse the calendar view and choose any time frame to view your data. In this option, you can type the time frame you want to view
-
-![Choose time frame](https://dytvr9ot2sszz.cloudfront.net/logz-docs/kibana-discover/time-settings-gif.gif)
-
-## Create Log Visualizations
-
-In the following video, you'll be able to see how to create a visualization dashboard based on your logs:
-
-
-<div>
-    <video width="100%" height="auto" controls autoplay loop muted>
-      <source src="https://dytvr9ot2sszz.cloudfront.net/logz-docs/videos/log-visualizations-velcfd5tpr.mp4" type="video/mp4" />
-      Your browser does not support the video tag.
-    </video>
-</div>
-
-
-
-<div style={{position: 'relative', paddingBottom: '56.25%'}}>
-  <iframe style={{position: 'absolute', top: '0', left: '0', width: '100%', height: '100%'}} src="https://fast.wistia.com/embed/iframe/velcfd5tpr" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
-</div>
-
-## Divide your log data
-
-You can divide logs from different environments by type, by utilizing Logz.io's sub accounts option.
-
-Create a sub account and configure it to receive the same logs as an existing account, mapping it as a different data type.
-
-For example, if a `metadata` field is assigned as an `Object` in your production environment, you can assign it as a `String` in your testing environment by creating a sub account to which you’ll send the same logs.
-
-You can also send data from each environment to a dedicated sub account to monitor them individually.
-
-Learn more about [creating and managing sub accounts](/docs/user-guide/admin/logzio-accounts/manage-the-main-account-and-sub-accounts) and about [field mapping](/docs/user-guide/data-hub/field-mapping/) in your account.
-
-## Additional resources
-
-* [Configure an alert](https://docs.logz.io/docs/user-guide/log-management/log-alerts/configure-alert/)
-* [Use Insights to detect new exceptions and critical errors](https://docs.logz.io/docs/user-guide/log-management/insights/ai-insights/)
-* [Use Live tail to get a live view of your logs](https://docs.logz.io/docs/user-guide/log-management/live-tail/)
+The default period to display results is 15 minutes. You can edit this time frame by clicking on the time picker. Choose an option from the quick menu, or switch to the absolute view to select a specific time frame. In this option, you can type the time frame you want to view. 
 
+![Time frame options](https://dytvr9ot2sszz.cloudfront.net/logz-docs/explore-dashboard/time-picker-sep9.png)
\ No newline at end of file

From e063096dad94265b20da1869a0a1b3fa462e005f Mon Sep 17 00:00:00 2001
From: Simplychee <simplychee@gmail.com>
Date: Mon, 9 Sep 2024 14:53:26 +0300
Subject: [PATCH 5/5] title

---
 docs/user-guide/explore/best-practices.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/explore/best-practices.md b/docs/user-guide/explore/best-practices.md
index 19e71891..e4c61452 100644
--- a/docs/user-guide/explore/best-practices.md
+++ b/docs/user-guide/explore/best-practices.md
@@ -60,7 +60,7 @@ Use the filters to refine your search, whether you're using Simple or Lucene. Op
 
 
 
-### Apply regex to search
+## Regex in Lucene
 
 :::caution
 Using regex can overload your system and cause performance issues in your account. If regex is necessary, it is best to apply filters and use shorter timeframes.