I am trying to understand this section better. I need to send an email for when I have "host flapping" on an interface. Problem is, I need to alert on the first log (unique to device and port) but not the duplicates that will follow for at least an hour.
How in the world do I set that in the "Correlation Time" section?
I watch many video's but so far none talk about this section, they all say "This is an advanced feature not needed her"...
Thanks