Versions Compared

Version Old Version 3 New Version Current
Changes made by

Assaf Cohen (Deactivated)

Assaf Cohen (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The Setup Alerts page shows details about existing system alerts, and lets you edit them  and define and create new alerts.

Click on "Add Alert" to create a new alert.
Click on the alert name to edit itenter the "alert details" page and edit the alert

ColumnDescription
EnabledShows whether or not the alert execution will be scheduled to run (this is a read only field, you can change it by editing the alert)
NameThe alert's name, click on the name to go to the Alert details Page - you can edit the alert from there.
DescriptionA description of the alert
(
- displays
the value of
the "Query Value" field of the alert
)
Schedule

When

the

an alert execution will be scheduled

(if the alert is not enabled the

-

Info
The alert will not be scheduled
)
if it is not enabled, even if this field contains a value


Recipients
syslog
"Syslog" and/or the email addresses of the recipients for the alert publishing

Alert Details

...

page

...

The top part displays the following fields:

FieldDescription
ScheduleWhen
the
an alert execution will be scheduled (if the alert is not enabled the alert will not be scheduled)
DescriptionA description of the alert
(
-displays the value of the "Query Value" field of the alert
)
REST URLThe URL to run the alert via REST
Recipients
syslog
"Syslog" and/or the email addresses of the recipients for the alert publishing

The top part of the page also contains three buttons:
Test - Execute the alert immediately, the alert will be executed even if it's disabled, this is helpful in case you want to check the alert before actually scheduling it.
Edit - Edit the alert
Delete - Delete the alert

Info
Deleted alert cannot be recovered.
If you simply do not want the alert to run - you can disable it (press "Edit" and uncheck the "Enabled" field)


The lower part of the screen page displays the results of the recent 20 executions of the alert

FieldDescription
Executing User

SCHEDULER - if

the alert was scheduled

DPOD run an alert execution via the scheduler

REST - if the alert was run via the REST API

user

User name - if a user tested the alert by pressing the "Test" button

StatusThe execution status
Status Time
Timestamp when
When the status was set
MessageHow many alerts were generated (or an error message if a problem occurred)


Add / Edit Alert

The first section contains details about the execution of the alert

FieldDescription
EnabledWhether or not the alert will be scheduled for execution
NameThe Alert's name
ScheduleWhen the alert will be scheduled, the format is identical to the one used to schedule reports
Destination

Specify

whether will write a syslog record, send an email, or

the alert publishing destinations:
Syslog - a syslog record will be written, you'll need to configure the Syslog target server's host name, port and the syslog severity field value (Error, Info, etc) in the System Parameters page.

Email - send an email (make sure that "Enable Queries Emails SMTP" is set to true inthe System Parameters page)

Email WS - send an email via webservice (make sure that "Enable Queries Emails SMTP WS" is set to true inthe System Parameters page)

Recipientsif the destination is Email or Email WS - this field will contain the list of recipients


The Alert Details section contains information about how the alert's query will be evaluated

FieldDescription
Type

DPOD supports three types of alerts:

Frequency - The condition will be met if there were X events in the checked time (for example, more than 5 system errors occurred in the last 10 minutes)
Flatline - The condition will be met if there is a value above a certain threshold (for example, Device CPU is above 80%)
Any - The condition will be met if any results are returned for the query (for example, a DataPower object is downThe alert type (more information about the alert types can be found in the the Alerts page)

Query Value

Free text, describes the results returned by the alert's query

Press on the "Details" button to view the Alert Queryalert query itself

Index Sets(Hidden by default) Which ElasticSearch index sets will be queried
Document Types(Hidden by default) Which ElasticSearch document types will be queried
Query (JSON)(Hidden by default) An ElasticSearch query
Query PeriodThe time frame for the alert's query
OperatorOperator for the alert's query
ThresholdThe value to compare the query's result to (not applicable for alert types "any" and "list"
Field NameOnly applicable for alert type "list"
Value ListOnly applicable for alert type "list" - the list of values delimited by the delimiter specified in the "delimiter" field


The Alert Filters section lets you specify additional criteria for the alert's query 

...