Re: alert when directory or subdirectory does not ...

indeed_2000 · ‎07-15-2021

Hi

I have file server that everyday backups of servers copy on that server on below path:

/backup/files/

/backup/files/server1/$DATE.zip

/backup/files/server2/$DATE.zip

...

How can I trigger this with Splunk: every day check that path and whenever one server not copy backup files, Splunk alert me.

e.g. backup file every night at 04:00 is ready, every morning at 07:00AM check that path and if find directory that has not have file that create today alert me.

Any idea?

Thanks,

inventsekar · ‎07-15-2021

Hi @indeed_2000
How can I trigger this with Splunk: every day check that path and whenever one server not copy backup files, Splunk alert me

you should write a simple query like index=main host=hostname | stats count

and save it as alert.. on the alert, add a condition that if the count is "zero"(the hostname has not sent backup files), then send you an email notification.

indeed_2000 · ‎07-19-2021

Is there any way to create table that show two columns like this?

server Status

/backup/files/server1/$DATE.zip Success

/backup/files/server2/$DATE.zip Failed

indeed_2000 · ‎07-15-2021

would you please show me real example?

alert when directory or subdirectory does not have file that created today

eval

fields

rex

stats

subsearch

table

Announcing Scheduled Export GA for Dashboard Studio

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics GA in US-AWS!