How to trigger alert based on time series forecast...

yam2002 · ‎10-29-2019

Hi,

I am trying to forecast %sales against time. I used the time series forecasting model in Splunk and have received prediction against time. (used kalman filter and kept Future timespan as 1112, Data received through a lookup CSV)

I have already created an alert for this experiment based on forecasting value greater than 80% and have kept the action as email however the alert is not getting triggered.

Can you please suggest how to trigger the alert?
Is there any setting which are to be changed(already set up email settings)?
Can this use case be implemented using Splunk?

aberkow · ‎10-30-2019

Are you certain the alert should have been triggered? (i.e. you ran the search over the time frame of an alert and it had a value greater than .8?) If so, you can look in the _internal logs to see why the alert (search index=_internal {nameOfAlert} ("error" OR "fail")) wasn't working. Otherwise, could you clarify what you're asking?

How to trigger alert based on time series forecasting model?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Index This | What travels the world but is also stuck in place?

Discover New Use Cases: Unlock Greater Value from Your Existing Splunk Data

Continue Your Journey: Join Session 2 of the Data Management and Federation Bootcamp ...

Join the Conversation