# Replay

Apica's **Replay** feature allows you to send previously ingested logs to a configured destination (e.g., S3 bucket, Splunk HEC endpoint) even if those logs were not mapped to a destination at the time of their ingestion. Replay allows selective resending of logs to the desired destination by user-defined criteria such as time range and attribute match.

&#x20;Replay especially comes in handy when there is an investigation of a historical incident, where a subset of logs can be sent to a destination.<br>

### How it works:

1. A [forwarder](https://docs.apica.io/flow/list-of-forwarders) must be configured that sends the logs to the desired destination.<br>

<figure><img src="https://2948796384-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LmzGprckLqwd5v6bs6m%2Fuploads%2FwcMqhzyLhBDJtYDM99QO%2FScreenshot%20from%202025-06-11%2011-37-16.png?alt=media&#x26;token=867eb891-7c65-48f4-b3f8-72875403a1a6" alt=""><figcaption></figcaption></figure>

2. Navigate to the explore page and select the namespace-application whose logs must be sent to a destination.

<figure><img src="https://2948796384-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LmzGprckLqwd5v6bs6m%2Fuploads%2FPANA0vFdPJBKAc2bBm7G%2FScreenshot%20from%202025-06-11%2011-44-38.png?alt=media&#x26;token=35c4c1b6-0e58-4c93-9dfb-c86295ed46fb" alt=""><figcaption></figcaption></figure>

3. Hover over the Ellipsis button, placed above the list of namespace-applications. Once the dropdown appears, click on the  *Replay* option.

<figure><img src="https://2948796384-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LmzGprckLqwd5v6bs6m%2Fuploads%2FlV2C48LoKcOvH6SfiBcZ%2FScreenshot%20from%202025-06-11%2011-48-48.png?alt=media&#x26;token=72763fa2-1a23-44ae-86b2-1b82695463e1" alt=""><figcaption></figcaption></figure>

4. Upon clicking the **Replay** option, a **Replay Configuration** modal will appear. Here, you can select logs from different namespace-application pairs along with their ingestion time range. In the **Forwarder** column, choose the configured forwarder from the dropdown menu.

<figure><img src="https://2948796384-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LmzGprckLqwd5v6bs6m%2Fuploads%2FN8LYjMubb0rlnTmpKtpI%2FScreenshot%20from%202025-06-11%2011-53-49.png?alt=media&#x26;token=3e5bf34c-cd18-47fa-ba11-ef87e4e12c00" alt=""><figcaption></figcaption></figure>

5. Additionally, a filter expression can also be added to send only a subset of logs for that particular time range.

<figure><img src="https://2948796384-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LmzGprckLqwd5v6bs6m%2Fuploads%2FBKHDDjMFHeyq4ALOQPnu%2FScreenshot%20from%202025-06-11%2011-55-44.png?alt=media&#x26;token=7bca76ee-902b-48e0-925d-8133f2538c90" alt=""><figcaption></figcaption></figure>