Versions Compared

Old Version 11

changes.mady.by.user Sara Weisz

Saved on

compared with

New Version Current

changes.mady.by.user Amit Munwes

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

Syslog Format

...

Alert Type: Flatline, match if a statistical value is less/more/equals to threshold X

...

languagejava

...

for Flatline/Frequency alerts

<16>Oct 23 15:40:43

...

dpod [0x00a0001a][DPOD-alert][info]

...

AlertName:(Devices

...

CPU

...

Metric)

...

AlertDesc:(Alert

...

on

...

Devices

...

CPU

...

over

...

80%)

...

on:(idg77)

...

Subject:(Device:idg77) Value:(85.0)

...

Threshold:(75.0)

...

TimeInterval:

...

(timestampStart:10/23/2018

...

15:35:43.714

...

,timestampStartLong

...

:1540298143714

...

,timestampEnd

...

:10/23/2018

...

15:40:43.714

...

,timestampEndLong

...

10/23/2018 15:40:43.714

...

:1540298443714)InvestigateUrl:(https://172.17.100.149/op/#deviceResources:-deviceNameOp:eq-deviceName:idg77-productView:idg-timeRangeType:custom-timeRangeStart:1663599211803-timeRangeEnd:1663599511803)

Name

Example

Description

Syslog facility code

<16>

Always <16>

Time

Oct 23 15:40:43

Alert's execution time

DPOD server host name

dpod 

The host name of DPOD server that generated the alert

Alerts Syslog Message ID

[0x00a0001a]

Always [0x00a0001a]

Category

[DPOD-alert]

Always [DPOD-alert]

Severity Level

[info]

May be set via System Parameters ("Syslog Severity Field Value")

Alert Name

AlertName:(Devices CPU Metric)

The alert name as defined in Alerts Setup

Alert Description

AlertDesc:(Alert on Devices CPU over 80%)

The alert description as defined in Alerts Setup

Alerted Object

on:(idg77)

The object (device, service, message, etc.) the alert was generated on

Alert Subject

Device:idg77

A list of properties for the object the alert was generated on

Alert Value

Value:(85.0)

The query's result value

Alert Threshold

Threshold:(75.0)

Filters:[device(),domain(),service()] Interval:[timestampStart(

The alert error threshold as defined in Alerts Setup

Time Range

timeInterval:(timestampStart:10/23/2018 15:35:43.714

)

,timestampStartLong

(

:1540298143714

)

,
timestampEnd

(

:10/23/2018 15:40:43.714

)

,timestampEndLong

(

:1540298443714)

]

Alert Type: Frequency, match if the number of fetched documents is more than threshold X

...

The time frame for the alert's execution

Investigate URL

InvestigateUrl:(https://<IP ADDRESS DPOD>/op/#deviceResources:-deviceNameOp:eq-deviceName:idg77-productView:idg-timeRangeType:custom-timeRangeStart:1663599211803-timeRangeEnd:1663599511803)

An investigate link that displays the data that triggered each alert in DPOD Web Console.

Syslog Format for Any/List alerts

<16>Oct 24 08:30:23 dpod[0x00a0001a][DPOD-alert][info] AlertName:(

...

Objects Down Alert) AlertDesc:(Alert

...

on any DP object that is enabled but down) on:(

...

Alert Type: List, match if a certain field of the fetched records matches a blacklist/whitelist

The message ID for all alerts will always be 0x00a0001a

...

[LogTarget, The initial server connection could not be started., apic2018_compat_idg2, DPOD-MSC-1805-2, SideCalls_Domain]) Subject:(objectStatusObjectClass:LogTarget,objectStatusErrorCode:The initial server connection could not be started.,objectStatusDeviceName:apic2018_compat_idg2,objectStatusName:DPOD-MSC-1805-2,objectStatusDomainName:SideCalls_Domain) TimeInterval:(timestampStart:09/19/2022 18:20:40.034,timestampStartLong:1663600840034,timestampEnd:09/19/2022 18:25:40.034,timestampEndLong:1663601140034) InvestigateUrl:(https://172.17.100.149/op/#apicFailedObjects:-deviceNameOp:eq-deviceName:apic2018_ucompat_uidg2-domainNameOp:eq-domainName:SideCalls_uDomain-objectTypeOp:eq-objectType:LogTarget-objectNameOp:eq-objectName:DPOD_dMSC_d1805_d2-productView:apic)

Name

Example

Description

Syslog facility code

<16>

Always <16>

Time

Oct 24 08:30:23

Alert's execution time

DPOD server host name

dpod 

The host name of DPOD server that generated the alert

Alerts Syslog Message ID

[0x00a0001a]

Always [0x00a0001a]

Category

[DPOD-alert]

Always [DPOD-alert]

Severity Level

[info]

May be set via System Parameters ("Syslog Severity Field Value")

Alert Name

AlertName:(Objects Down Alert)

The alert name as defined in Alerts Setup

Alert Description

AlertDesc:(Alert on any DP object that is enabled but down)

The alert description as defined in Alerts Setup

Alerted Object

on:([LogTarget, The initial server connection could not be started., apic2018_compat_idg2, DPOD-MSC-1805-2, SideCalls_Domain])

The object (device, service, message, etc.) the alert was generated on

Time Range

TimeInterval:(timestampStart:09/19/2022 18:20:40.034,timestampStartLong:1663600840034,timestampEnd:09/19/2022 18:25:40.034,timestampEndLong:1663601140034)

The time frame for the alert's execution

Investigate URL

InvestigateUrl:(https://<IP ADDRESS DPOD>/op/#apicFailedObjects:-deviceNameOp:eq-deviceName:apic2018_ucompat_uidg2-domainNameOp:eq-domainName:SideCalls_uDomain-objectTypeOp:eq-objectType:LogTarget-objectNameOp:eq-objectName:DPOD_dMSC_d1805_d2-productView:apic)

An investigate link that displays the data that triggered each alert in DPOD Web Console.