This page shows how to use alerting in EraSearch's UI. By the end of this guide, you'll have an alert rule that sends alert notifications to Slack.
While this guide uses Slack as the notification channel, the UI also supports PagerDuty and Webhooks.
Before you beginCopyCopied!
This guide creates an alert on sample, real-time data. See steps one and two in Writing data with Vector to use the same data.
Step 1: Access alertingCopyCopied!
To access alerting, sign in to your EraCloud account and click Alerts.
Step 2: Configure the notification channelCopyCopied!
Follow these steps to create a Slack notification channel:
- In the Alerts tab, click Channels > + Add channel.
- Configure your notification channel:
- For Name, give your notification channel a name, for example, Team alerts channel.
- For Type, select Slack.
- For Channel, enter the channel associated with your Slack Webhook URL, for example, team-alerts.
- For Webhook URL, enter your existing Slack Webhook URL.
- Click Test channel to check your configuration and get a sample event in Slack.
- Click Save channel.
Step 3: Configure the alert ruleCopyCopied!
Follow these steps to configure and test your alert rule:
In the Alerts tab, click Rules > + Add rule.
Set the details for your alert rule:
For Name, give a name that'll appear in the alert notification.
Example: GET 404 errors.
For Desc., add details you want to include in the alert notification.
Example: Check backend services.
For Query, enter a query using Elasticsearch's query string syntax.
Example: status:404 AND method:GET AND size:>3000.
Set the conditions for your alert rule by selecting items in the IF, WITHIN, and NOTIFY drop-downs.
Click Test rule to check your configuration and get a sample alert notification in Slack.
Click Save rule to enable the alert rule.
You've officially configured an alert! Note that you can click the megaphone icon to mute and unmute your alert rule in the UI.
Visit these pages for more on working with and exploring data in EraSearch: