Event Alerts

Monitor occurrences of specific events, and alert if the total number of occurrences violates a threshold. Useful for alerting on container, orchestration, and service events like restarts and deployments.

Alerts on events support one or more segmentation labels. An alert is generated for each segment.


Defining an Event Alert

Guidelines

  • Count Events That Match: Specify a meaningful filter text to count the number of related events.

  • Severity: Set a severity level for your alert. The Priority: High, Medium, Low, and Info are reflected in the Alert list, where you can sort by the severity by using the top navigation pane. You can use severity as a criterion when creating events and alerts, for example: if there are more than 10 high severity events, notify.

  • Source Tag: Supported source tags are Kubernetes, Docker, and Containerd.

  • Alert if: Specify the trigger condition in terms of the number of events for a given duration.

  • Set a unique name and description: Set a meaningful name and description that help recipients easily identify the alert.

Configure Scope

Filter the environment on which this alert will apply. Use advanced operators to include, exclude, or pattern-match groups, tags, and entities. You can also create alerts directly from Explore and Dashboards for automatically populating this scope.


In this example, failing to schedule a pod in a default namespace triggers an alert.

Configure Trigger

Define the threshold and time window for assessing the alert condition. Single alert fires an alert for your entire scope, while multiple alert fires if any or every segment breach the threshold at once.

If the number of events triggered in the monitored entity is greater than 5 for the last 10 minutes, recipients will be notified through the selected channel.



Last modified August 9, 2022