cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Custom alerts for Log Monitoring

danya_matterste
Participant

Hello

I created a metric from log events, the correspondant events normally are very rare, like once or twice a week. But the customer wants an alert if there are more than 15 events coming in half an hour. 
I am very unsure how to configure this in the custom alert.. 
Is there any recommandation? How would you do it?

Thank you for help.

danya

danya_matterste_0-1646385979862.png

 

 

3 REPLIES 3

dannemca
DynaMight Mentor
DynaMight Mentor

Your static threshold should the 15, and the minutes slot and period I also have doubt, I would leave the most experience here to help us. But I would go for 1 in 30.

Site Reliability Engineer @ Kyndryl

dannemca
DynaMight Mentor
DynaMight Mentor

Let me correct myself here. The fixed threshold should be 15 only if you do aggregate the events as SUM. Since the custom event works as AVG, do your threshold should be 1, and the timing would be 15 in 30.

Site Reliability Engineer @ Kyndryl

I'll try that. Thank You!