elk報警監控之sentinl 釘釘報警配置
elk報警監控之sentinl 釘釘報警配置
1.安裝sentinl
能夠在線安裝 ./kibana-plugin install https://github.com/sirensolut...git
也能夠離線安裝 ./kibana-plugin install file:../../sentinl-v6.2.4.zip file 關鍵字不能漏掉github
[root@elk-181 bin]# ./kibana-plugin install file:/root/sentinl-v6.2.4.zip Attempting to transfer from file:/root/sentinl-v6.2.4.zip Transferring 130048021 bytes.................... Transfer complete Retrieving metadata from plugin archive Extracting plugin archive Extraction complete Optimizing and caching browser bundles... Plugin installation complete
安裝sentinl後kibana可能會關閉, 啓動kibanaweb
2.配置sentinl
1).添加一個釘釘機器人
2).添加一個Watchers
點擊new-> 點擊watchers前面的」加號「json
將下方代碼copy其中,記住選中enadle,而後選擇保存,下次每次更改能夠去input,action中直接更改保存。api
{
"actions": {
"test-dingding": {
"name": "waring_error_log_push_dingding",
"throttle_period": "0h1m0s",
"webhook": {
"priority": "high",
"stateless": false,
"method": "POST",
"host": "oapi.dingtalk.com",
"port": "443",
"path": "/robot/send?access_token=f4b53a0ea844f914xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
"body": " {\"msgtype\": \"markdown\",\"markdown\": {\"title\":\"DEV_time.out\",\"text\": \"# Dev預警 \\t\\n ### 主機 | ```\\n{{payload.hits.hits.0._index}}\\n``` | \\t\\n ### Project | ```\\n{{payload.hits.hits.0._source.service}}\\n``` | \\t\\n ### 最近一分鐘發生次數 | ```\\n{{payload.hits.total}}\\n``` | \\t\\n ### 告警內容:```\\n{{payload.hits.hits.0._source.message}}\\n``` \\t\\n \" } }",
"params": {
"watcher": "{{watcher.title}}",
"payload_count": "{{payload.hits.total}}"
},
"headers": {
"Content-Type": "application/json"
},
"auth": "釘釘帳號:釘釘密碼",
"message": "業務功能告警",
"use_https": true,
"save_payload": false
}
}
},
"input": {
"search": {
"request": {
"index": [
"applog-*"
],
"body": {
"query": {
"bool": {
"must": [
{
"query_string": {
"analyze_wildcard": true,
"query": "\"error\""
}
},
{
"range": {
"@timestamp": {
"gte": "now-1h",
"lte": "now",
"format": "epoch_millis"
}
}
}
],
"must_not": []
}
}
}
}
}
},
"condition": {
"script": {
"script": "payload.hits.total >=1"
}
},
"transform": {},
"trigger": {
"schedule": {
"later": "every 20 minutes"
}
},
"disable": true,
"report": false,
"title": "警告和錯誤日誌推送釘釘"
}
3.測試
相關文章
- 1. zabbix監控釘釘報警配置
- 2. zabbix 釘釘報警
- 3. Zabbix 釘釘報警
- 4. Python釘釘報警及Zabbix集成釘釘報警
- 5. Zabbix配置企業釘釘報警
- 6. zabbix 3.0釘釘報警配置
- 7. kibana-sentinl-監控報警
- 8. 釘釘報警-prometheus-alertmanager
- 9. zabbix建立釘釘報警
- 10. Prometheus+Grafana+Altermanager釘釘報警
- 更多相關文章...
- • ARP報文格式詳解 - TCP/IP教程
- • UDP報文格式詳解 - TCP/IP教程
- • IntelliJ IDEA 代碼格式化配置和快捷鍵
- • IDEA下SpringBoot工程配置文件沒有提示
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
- 1. python的安裝和Hello,World編寫
- 2. 重磅解讀:K8s Cluster Autoscaler模塊及對應華爲雲插件Deep Dive
- 3. 鴻蒙學習筆記2(永不斷更)
- 4. static關鍵字 和構造代碼塊
- 5. JVM筆記
- 6. 無法啓動 C/C++ 語言服務器。IntelliSense 功能將被禁用。錯誤: Missing binary at c:\Users\MSI-NB\.vscode\extensions\ms-vsc
- 7. 【Hive】Hive返回碼狀態含義
- 8. Java樹形結構遞歸(以時間換空間)和非遞歸(以空間換時間)
- 9. 數據預處理---缺失值
- 10. 都要2021年了,現代C++有什麼值得我們學習的?
歡迎關注本站公眾號,獲取更多信息
