The Setup Alerts page shows details about existing system alerts, and lets you edit them and create new alerts.
Click on "Add Alert" to create a new alert.
Click on the alert name to enter the "alert details" page and edit the alert.
| Column | Description |
|---|---|
| Enabled | Shows whether or not the alert will be scheduled to run (this is a read only field, you can change it by editing the alert) |
| Name | The alert's name, click on the name to go to the Alert details Page - you can edit the alert from there. |
| Description | A description of the alert - displays the "Query Value" field of the alert |
| Schedule | When the alert will be scheduled - The alert will not be scheduled if it is not enabled, even if this field contains value |
| Recipients | "Syslog" and/or the email addresses of the recipients |
Alert Details page
The top part displays the following fields:
| Field | Description |
|---|---|
| Schedule | When the alert will be scheduled (if the alert is not enabled the alert will not be scheduled) |
| Description | A description of the alert -displays the value of the "Query Value" field of the alert |
| REST URL | The URL to run the alert via REST |
| Recipients | "Syslog" and/or the email addresses of the recipients |
it also contains three buttons:
Test - Execute the alert immediately, the alert will be executed even if it's disabled, this is helpful in case you want to check the alert before actually scheduling it.
Edit - Edit the alert
Delete - Delete the alert
The lower part of the page displays the results of the recent 20 executions of the alert
| Field | Description |
|---|---|
| Executing User | SCHEDULER - if the alert was scheduled REST - if the alert was run via the REST API User name - if a user tested the alert by pressing the "Test" button |
| Status | The execution status |
| Status Time | When the status was set |
| Message | How many alerts were generated (or an error message if a problem occured) |
Add / Edit Alert
The first section contains details about the execution of the alert
| Field | Description |
|---|---|
| Enabled | Whether or not the alert will be scheduled |
| Name | The Alert's name |
| Schedule | When the alert will be scheduled, the format is identical to the one used to schedule reports |
| Destination | Specify what will happen when an alert is generated: Email - send an email (make sure that "Enable Queries Emails SMTP" is set to true in the System Parameters page) Email WS - send an email via webservice (make sure that "Enable Queries Emails SMTP WS" is set to true in the System Parameters page) |
| Recipients | if the destination is Email or Email WS - this field will contain the list of recipients |
The Alert Details section contains information about how the alert's query will be evaluated
| Field | Description |
|---|---|
| Type | DPOD supports three types of alerts: Frequency - The condition will be met if there were X events in the checked time (for example, more than 5 system errors occurred in the last 10 minutes) |
| Query Value | Free text, describes the results returned by the alert's query Press on the "Details" button to view the Alert Query |
| Index Sets | (Hidden by default) Which ElasticSearch index sets will be queried |
| Document Types | (Hidden by default) Which ElasticSearch document types will be queried |
| Query (JSON) | (Hidden by default) An ElasticSearch query |
| Query Period | The time frame for the alert's query |
| Operator | Operator for the alert's query |
| Threshold | The value to compare the query's result to |
The Alert Filters section lets you specify additional criteria for the alert's query
| Field | Description |
|---|---|
| Device | Which DataPower devices the alert's query should check |
| Domain | Which DataPower domains the alert's query should check |
| Service | Which DataPower services the alert's query should check |