Alert Rule Examples

Ping Alerts

We recommend using the Device or Group filters for Ping alerts.

Send Ping up and down alerts for a device (cisco123):
* cisco123 ping4 PING.icmpState = email [email protected]
Send Ping down alerts only:
* cisco123 ping4 PING.icmpState value down = email [email protected]
Send IPv6 Ping alerts:
* cisco123 ping6 PING.icmpState = email [email protected]
Send alerts to Slack:
* * ping4 PING.icmpState value down = call post_alert_slack
Send Ping alerts for devices in the Cisco group:
* * ping4 PING.icmpState any group Cisco = email [email protected]
To reduce Ping alert noise, we recommend using Wait Rules:
wait 5m * * ping4 PING.icmpState any group Cisco = email [email protected]

Send Uptime Reset alerts:
* * * SNMPv2-MIB.sysUpTime = email [email protected]
Send Uptime Reset alerts for Cisco devices:
* * * CISCO-LWAPP-AP-MIB.cLApUpTime = email [email protected]

We recommend using Wait Rules.

Send a BGP Alert:
wait 5m * * * BGP4-MIB.bgpPeerState = email [email protected]

Configure device groups via Admin > Grouping

Send Ping alerts for multiple device groups:
* * ping4 PING.icmpState any group Adva Cisco = email [email protected]
Send interface status alerts using pre-defined interface groups:
* * * IF-MIB.ifOperStatus any group uplink = call custom_alert
* * * IF-MIB.ifOperStatus any group internet = call custom_alert
* * * IF-MIB.ifOperStatus any group switch-trunk = call custom_alert
We recommend grouping similar rules together:
* * * IF-MIB.ifOperStatus any group uplink internet switch-trunk = call custom_alert

Configure third-party support via Admin > Alerting > Integration Settings

Send alerts to Slack:
* * ping4 PING.icmpState = call post_alert_slack
Send alerts to ServiceNow:
* * ping4 PING.icmpState = call post_alert_servicenow
Send alerts to PagerDuty:
* * ping4 PING.icmpState = call post_alert_pagerduty

Juniper devices do not have separate CPU, Fan and PSU status attributes. To distinguish between these, you need to specify the appropriate child.