...
Click on "Add Alert" to create a new alert.
Click on the alert name to edit it.
| Column | Description |
|---|---|
| Enabled | Shows whether or not the alert will be scheduled to run (this is a read only field, you can change by editing the alert |
| Name | The alert's name, click on the name to edit the alert |
| Description | A description of the alert ( |
| displays the value of the "Query Value" field of the alert) | |
| Schedule | When the alert will be scheduled (if the alert is not enabled the alert will not be scheduled) |
| Recipients | syslog and/or the email addresses of the recipients |
Alert Details page
The alert details page contains two sections:
The top part displays the following fields:
| Field | Description |
|---|---|
| Schedule | When the alert will be scheduled (if the alert is not enabled the alert will not be scheduled) |
| Description | A description of the alert (displays the value of the "Query Value" field of the alert) |
| REST URL | The URL to run the alert via REST |
| Recipients | syslog and/or the email addresses of the recipients |
The lower part of the screen displays the results of the recent 20 executions of the alert
| Field | Description |
|---|---|
| Executing User | SCHEDULER - if the alert was scheduled REST - if the alert was run via the REST API user name - if a user tested the alert by pressing the "Test" button |
| Status | The execution status |
| Status Time | Timestamp when the status was set |
| Message | How many alerts were generated (or an error message) |
Add / Edit Alert
The first Part section contains details about the execution of the alert
| Field | Description |
|---|---|
| Enabled | Whether or not the alert will be scheduled |
| Name | The Alert's name |
| Schedule | When the alert will be scheduled, the format is identical to the one used to schedule reports |
| Destination | Specify whether will write a syslog record, send an email, or send an email via webservice |
| Recipients | if the destination is Email or Email WS - this field will contain the list of recipients |
The Alert Details section contains information about how the alert's query will be evaluated
| Field | Description |
|---|---|
| Type | DPOD supports three types of alerts: Frequency - The condition will be met if there were X events in the checked time (for example, more than 5 system errors occurred in the last 10 minutes) |
| Query Value | Free text, describes the results returned by the alert's query Press on the "Details" button to view the Alert Query |
| Index Sets | (Hidden by default) Which ElasticSearch index sets will be queried |
| Document Types | (Hidden by default) Which ElasticSearch document types will be queried |
| Query (JSON) | (Hidden by default) An ElasticSearch query |
| Query Period | The time frame for the alert's query |
| Operator | Operator for the alert's query |
| Threshold | The value to compare the query's result to |
The Alert Filters section lets you specify additional criteria for the alert's query
| Field | Description |
|---|---|
| Device | Which DataPower devices the alert's query should check |
| Domain |
| Which DataPower domains the alert's query should check | |
| Service | Which DataPower services the alert's query should check |