Whether you are just starting your observability journey or already are an expert, our courses will help advance your knowledge and practical skills.
Expert insight, best practices and information on everything related to Observability issues, trends and solutions.
Explore our guides on a broad range of observability related topics.
Use the Coralogix Standard Alerts feature to monitor system performance, get notified when there are changes to your logs, and instantly pinpoint potential causes.
Standard alerts are alerts that are triggered by changes to your logs. These alerts are useful when trying to measure the number of occurrences of a particular incident – when a user arrives at your website, for example, or when an error occurs.
With the Standard Alerts feature, you can do the following:
Standard alerts are the simplest alerts that Coralogix offers. Their simplicity is their strength. We strongly recommend that you cover your most obvious use cases with standard alerting to build a strong foundation in your observability system.
STEP 1. Perform a query to filter the logs that will be returned as part of the alert.
To create an alert without a predefined query, click on Alerts > Alert Management in the Coralogix toolbar. Click NEW ALERT on the upper right-hand corner of your dashboard.
STEP 2. Define Alert Details.
key:value
.). alert_type:security
label. This will help Security customers filter for this alert type in the Incidents screen.STEP 3. Select STANDARD Alert Type.
STEP 4. Define Query.
STEP 5. Set the Conditions for triggering an alert.
Select whether to trigger the alert immediately, or define a rule based on the number of occurrences within a specified time window or using our Dynamic Alerts anomaly detecting option.
The Evaluation Window is the period of time that is periodically queried for the alert query and parameters. When the alert is set to More than for a Standard Alert, you can select the Evaluation Window type from the following options:
Group your alerts using one or more aggregated values into a histogram.
STEP 6. Define Notification settings.
In the notification settings, you have different options, depending on whether or not you are using the Group By condition.
When using Group By conditions, you will see the following options:
When not using the Group By condition, a single alert will be triggered and sent to your Incidents Screen when the query meets the condition.
You can define additional alert recipient(s) and notification channels in both cases by clicking + ADD WEBHOOK. Once you add a webhook, you can choose the parameters of your notification:
Once you add a webhook to the notification group, a toggle appears which enables you to move to Advanced Mode. Advanced mode enables you to set the notify every & notify when resolved settings for each webhook individually. Note that the toggle affects all notification groups, and when you turn the toggle on in one notification group, it will be turned on in all notification groups.
STEP 7. Set a Schedule.
Limit triggering to specific days and times.
STEP 8. Define Notification Content.
STEP 9. Verify your alert.
Click VERIFY to view how many times the alert matched the criteria in the last 24 hours.
STEP 10. View your History.
View which user performed a change in the alert and when.
STEP 11. Create your alert.
Click CREATE ALERT on the upper-right side of the screen.
Navigate to Alerts > Incidents from you Coralogix toolbar.
Bundled as incidents, triggered alert events are presented in your Incidents Screen according to the Group By tags and notification settings set in your alert definition.
Manage, edit, and snooze alerts. Find out more here.
Standard Alerts do not support arrays in queries.
Need help?
Our world-class customer success team is available 24/7 to walk you through your setup and answer any questions that may come up.
Contact us via our in-app chat or by emailing support@coralogix.com.