Alarm for silent log source

KaWa · September 20, 2024, 1:41pm

Hi,

I'd like to create an alarm for every log source that used to log frequently.
How can I do this?

Best regards
Kai

--
Version: 8.15.1

Pedro_Jaramillo · October 1, 2024, 2:28pm

Hi @KaWa, my understanding is that you are trying to get alerted when a data source shows significant drops in average logging volume (please correct me if I'm wrong). Please take a look at the Log Threshold rule type, as it looks like it might meet your needs. This rule type is available through Kibana -> Stack Management -> Rules.

KaWa · October 2, 2024, 7:13am

Thank you, @Pedro_Jaramillo.
I'll have a look.

system · October 30, 2024, 7:13am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Watcher if log occours Kibana elastic-stack-alerting	3	231	September 16, 2021
Alerting based on the keyword in logs Logs elastic-stack-alerting	4	7395	February 3, 2021
Alerts based on Logs of Analytics and not from APM data Elastic Observability elastic-stack-alerting	2	263	November 4, 2022
Kibana watcher alerting for Elastic agents Kibana elastic-stack-alerting	1	144	September 13, 2023
How to set up alert based on value change over given amount of time Kibana elastic-stack-alerting	7	970	October 12, 2023

Alarm for silent log source

Related Topics