...
...
...
...
...
...
...
...
...
...
Syslog Format for Flatline
...
/ Frequency alerts
| Paste code macro |
|---|
|
<16>Oct 23 15:40:43 dpod [0x00a0001a][DPOD-alert][info] AlertName:(Devices CPU Metric) AlertDesc:(Alert on Devices CPU over 80%) on:(idg77) Value:(85.0) Threshold:(75.0) Filters:[device(),domain(),service()] Interval:[timestampStart(10/23/2018 15:35:43.714),timestampStartLong(1540298143714),timestampEnd(10/23/2018 15:40:43.714),timestampEndLong(1540298443714)] |
TimeHostAlerts Message IDLevel10/23/2018 | Alert Name | Alert Description | On (Alert Device/ Object) | Alert Details | | Always <16> |
| Time | Oct 23 15:40:43 |
.714dpod | 0x00a0001a
(always the same) | info | Alert's execution time |
| DPOD server host name | dpod | The host name of DPOD server that generated the alert |
| Alerts Syslog Message ID | [0x00a0001a] | Always [0x00a0001a] |
| Category | [DPOD-alert] | Always [DPOD-alert] |
| Severity Level | [info] | May be set via System Parameters ("Syslog Severity Field Value") |
| Alert Name | AlertName:(Devices CPU Metric) | The alert name as defined in Alerts Setup |
| Alert Description | AlertDesc:(Alert on Devices CPU over 80%) | The alert description as defined in Alerts Setup |
| Alerted Object | on:(idg77) | The object (device, service, message, etc.) the alert was generated on |
| Alert Value | Value:(85.0) | The query's result value |
| Alert Threshold | Threshold:(75.0) | The alert error threshold as defined in Alerts Setup |
| Alert Filters | Filters:[device(),domain(),service()] | Additional criteria for the alert's execution |
| Time Range | Interval:[timestampStart(10/23/2018 15:35:43.714),timestampStartLong(1540298143714),
timestampEnd(10/23/2018 15:40:43.714),timestampEndLong(1540298443714)] |
...
| The time frame for the alert's execution |
Syslog Format for Any/ List alerts
| Paste code macro |
|---|
|
<16>Oct 2324 1708:4430:23 dpod dpod[0x00a0001a][DPOD-alert][info] AlertName:(TransactionObjects ErrorsDown Alert) AlertDesc:(Alert whenon 5any orDP moreobject Transactionsthat withis errorsenabled in the last 30 minutesbut down) on:(mpgw - webapi[Domain is down, LogTarget, idg77, HospitalA_Domain]) Value:(22.0null) Threshold:(5.0null) Filters:[device(idg77),domain(),service()] Interval:[timestampStart(10/2224/2018 1708:4425:23.088531),timestampStartLong(15402194630881540358723531),timestampEnd(10/2324/2018 1708:4430:23.088531),timestampEndLong(15403058630881540359023531)] |
TimeHostinfo| Alerts Syslog Message ID | Level | Alert Name | Alert Description | On (Alert Device/ Object) | Alert Details | 10/23/2018 17:44:23.088 | dpod | 0x00a0001a
(always the same) | | Syslog facility code | <16> | Always <16> |
| Time | Oct 24 08:30:23 | Alert's execution time |
| DPOD server host name | dpod | The host name of DPOD server that generated the alert |
| Alerts Syslog Message ID | [0x00a0001a] | Always [0x00a0001a] |
| Category | [DPOD-alert] | Always [DPOD-alert] |
| Severity Level | [info] | May be set via System Parameters ("Syslog Severity Field Value") |
| Alert Name | AlertName:(Objects Down Alert) |
Transaction Errors Alert | Alert when 5 or more Transactions with errors in the last 30 minutes | mpgw - webapi | Value:(22.0) Threshold:(5.0) Filters:[device(idg77 | The alert name as defined in Alerts Setup |
| Alert Description | AlertDesc:(Alert on any DP object that is enabled but down) | The alert description as defined in Alerts Setup |
| Alerted Object | on:([Domain is down, LogTarget, idg77, HospitalA_Domain]) | The object (device, service, message, etc.) the alert was generated on |
| Alert Value | Value:(null) | The alert value is not applicable for alert types "any" and "list" |
| Alert Threshold | Threshold:(null) | The alert threshold is not applicable for alert types "any" and "list" |
| Alert Filters | Filters:[device(),domain(),service()] | Additional criteria for the alert's execution |
| Time Range | Interval:[timestampStart(10/ |
22 174408815402194630881540358723531),
timestampEnd(10/ |
23 17440881540305863088 Syslog Format for Any alerts (match if any record was fetched)
...
The time frame for the alert's execution |