- Apps and Add-ons
- :
- All Apps and Add-ons
- :
- Re: Accommodate Nightly Server Restarts
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi ,
I have a series of servers - located on the East coast and West coast which undergo scheduled restarts at 0100 and 0400 .
Is it possible alert or setup the app so that I do not see these scheduled outage times reflected within the " Status History ' Dashboard ? ( Specifically the Maximum Response Time , Availability and Failures panels )
Thanks
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Here is my approach - seemed to suit my purposes - added the following to the search strings within each panel
NOT (date_hour>=1 date_hour<110) NOT (date_hour>=4 date_hour<410)
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Here is my approach - seemed to suit my purposes - added the following to the search strings within each panel
NOT (date_hour>=1 date_hour<110) NOT (date_hour>=4 date_hour<410)
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi klaxdal,
If setting your queries with filter and comparatives in the window known (0100 and 0400), would it suffice?
Please, share some queries with us.
Rodrigo Ribeiro
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Rodrigo - not quite sure what you mean ? Can you elaborate ?
klaxdal
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Klaxdal,
Can you share your Dashboard (Query)?
Rodrigo Ribeiro
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
They are the 'standard' dashboards offered within the Website Monitoring app - I would like to filter all events when the servers undergo their nightly restarts 0100 - 0120 and 0400 to 0420
sourcetype="web_ping" title="" filter_inoperable | stats count as count *( lists the failures over 24 hrs)**
sourcetype="web_ping" title="" | stats max(total_time) as response_time *( lists max response time )**
sourcetype="web_ping" title="" | fillnull value=1000 response_code | eval
success=case(response_code>=400, 0, timed_out == "True", 0) | fillnull value=1 success | chart count as total, sum(success) as successes | eval availability=round(100(successes/total),2) | fields availability ( lists availability )
Any help would be greatly appreciated
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I hope I can help you...
I was thinking of something like:
sourcetype="web_ping" title="" filter_inoperable
| eval hour=strftime(_time , "%H")
| eval minute=strftime(_time , "%M")
| where (hour>01 AND minute>20)
| stats count as count ( lists the failures over 24 hrs)*
With some combinations and date and time tests you can "hide" this period.
Rodrigo Ribeiro
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks Rodrigo !
Will give it a try . Really appreciate the help .
Introducing the 2024 SplunkTrust!
Introducing the 2024 Splunk MVPs!
Splunk Custom Visualizations App End of Life
