search

gravwell / kits

A collection of open source Gravwell kits
BSD 2-Clause "Simplified" License
3 stars 15 forks source link

Gravwell kit: self monitoring queries #157

Closed kris-watts-gravwell closed 1 month ago

kris-watts-gravwell commented 7 months ago

Need some additional self monitoring queries

Show component errors

tag=gravwell syslog -s Hostname Appname error
| stats count Hostname Appname error
| table count error Hostname Appname

Show ingester re connection counts

tag=gravwell syslog Message == "successfully connected with ingest OK" Hostname Appname Structured[gw@1].version Structured[gw@1].indexer as upstream
| stats count by Hostname Appname version upstream
| table

A flow that monitors ingester cachesizes

Flow that fires alerts on missing ingesters