Elasicsearch alerts on Icinga

Yarden_Bar · March 19, 2015, 12:48pm

Hello good people,

We have an ELK setup for our nginx / postfix etc logs. it's great.

Now we'd like to be able to alert based on various criteria. icinga is
great, we just installed it to play with.

is there a plugin that we can use to query elasticsearch from within
icinga, to create alerts?

we have a POC but it's a ruby script, hence clunky...

Thanks,
Yarden

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/4d325d11-8197-44ed-a73d-802f21534d9a%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

warkolm · March 19, 2015, 4:38pm

There are a few nagios scripts people have written, eg

On 19 March 2015 at 05:48, Yarden Bar ayash.jorden@gmail.com wrote:

Hello good people,

We have an ELK setup for our nginx / postfix etc logs. it's great.

Now we'd like to be able to alert based on various criteria. icinga is
great, we just installed it to play with.

is there a plugin that we can use to query elasticsearch from within
icinga, to create alerts?

we have a POC but it's a ruby script, hence clunky...

Thanks,
Yarden

--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/elasticsearch/4d325d11-8197-44ed-a73d-802f21534d9a%40googlegroups.com
https://groups.google.com/d/msgid/elasticsearch/4d325d11-8197-44ed-a73d-802f21534d9a%40googlegroups.com?utm_medium=email&utm_source=footer
.
For more options, visit https://groups.google.com/d/optout.

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/CAEYi1X9bVQLnbfifgryLzGcPpqeYMO_bLsjacmkQ7GmgGnELkQ%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.

Yarden_Bar · March 22, 2015, 2:39pm

Thanks Mark for the Nagios plugin suggestion. just that I'm not aiming at
monitoring ES itself (that would be later, down the road)

What I'm looking for is an efficient way( a framework maybe) to register
alerts into Icinga/Nagios that will recieve an Elasticsearch query as a
parameter and start alerting based on a threshold parameters(which are
supplied as well).

Currently I'm coding each ES based check manually.

Thanks in advance for any ideas..
Yarden

On Thursday, March 19, 2015 at 6:39:06 PM UTC+2, Mark Walkom wrote:

There are a few nagios scripts people have written, eg
GitHub - anchor/nagios-plugin-elasticsearch: An ElasticSearch availability and performance monitoring plugin for Nagios

On 19 March 2015 at 05:48, Yarden Bar <ayash....@gmail.com <javascript:>>
wrote:

Hello good people,

We have an ELK setup for our nginx / postfix etc logs. it's great.

Now we'd like to be able to alert based on various criteria. icinga is
great, we just installed it to play with.

is there a plugin that we can use to query elasticsearch from within
icinga, to create alerts?

we have a POC but it's a ruby script, hence clunky...

Thanks,
Yarden

--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to elasticsearc...@googlegroups.com <javascript:>.
To view this discussion on the web visit
https://groups.google.com/d/msgid/elasticsearch/4d325d11-8197-44ed-a73d-802f21534d9a%40googlegroups.com
https://groups.google.com/d/msgid/elasticsearch/4d325d11-8197-44ed-a73d-802f21534d9a%40googlegroups.com?utm_medium=email&utm_source=footer
.
For more options, visit https://groups.google.com/d/optout.

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/0b2e9bbf-7d6c-4582-9a4a-709c2fead1ed%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.