I have all my SNMP metrics, logs, and netflow going into Elasticsearch, and visualized with Kibana.
One problem with this approach is putting alerts for certain devices into "maintenance mode".
I believe Prometheus Alertmanager has a way to mute alerts based on a filter ("for alert X, mute if device=Denver*"). It doesn't look like Kibana has this option, just the option to mute an entire alert.
Is there an alerting platform that can create alerts based on Elasticsearch queries, and silence/mute based on an additional query filter?
No comments:
Post a Comment