Great. Neat combine all we need ....Infra for K8S(metrics), Logging(filebeat) , ElasticAPM(apm-server) and now Uptime (heatbeat)
But do there have Alert can be setup for Uptime ?(hook to email, slack or other com tools)
I do setup it and it is fine to send them to elasticsearch ,
However i dont find a way make it more useful for alert me if there have "Down"
Or it only for review purpose ?
Not sure if I'm understanding you correctly but yes you can use Watcher to send alerts to email and slack:
https://www.elastic.co/guide/en/x-pack/current/actions-email.html
We are new to using Elastic Cloud 6.7 and want to send alerts when heartbeat indicates a down service.
{
"trigger": {
"schedule": {
"interval": "30m"
}
},
"input": {
"search": {
"request": {
"body": {
"size": 0,
"query": {
"match_all": {}
}
},
"indices": [
"*"
]
}
}
},
"condition": {
"compare": {
"ctx.payload.hits.total": {
"gte": 10
}
}
}
I have this firing now on 2 resolve.host. How do I get the resolve.host names in the email....
{
"trigger": {
"schedule": {
"interval": "30s"
}
},
"input": {
"search": {
"request": {
"search_type": "query_then_fetch",
"indices": [
"heartbeat*"
],
"types": ,
"body": {
"query": {
"bool": {
"must": [
{
"range": {
"@timestamp": {
"gte": "now-1m",
"lt": "now"
}
}
},
{
"term": {
"monitor.status": {
"value": "up"
}
}
}
]
}
},
"aggregations": {
"host": {
"significant_terms": {
"field": "resolve.host"
}
}
},
"size": 0
}
}
}
},
"condition": {
"compare": {
"ctx.payload.hits.total": {
"gte": 10
}
}
},
"actions": {
"send_email": {
"email": {
"profile": "standard",
"to": [
"frankfoti@adaptiveresults.com"
],
"subject": "Watcher Notification",
"body": {
"text": "{{ctx.payload.hits.total}} error logs found"
}
}
}
}
}
Hi @Vincent_Ngai. As @BKG noted, today you can configure Watcher to send alerts for custom conditions to external services.
We also have more specialized alerting features on our roadmap, with the goal of making it easier to configure Uptime-specific alerts via our UI with a much lower barrier of entry.
Looking forward to that!
This topic was automatically closed 24 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.