Home Explore Help
Sign In
SMusatov
/
netdata
mirror of https://github.com/netdata/netdata.git
1
0
Fork 0
Files Wiki
Tree: 7648928e7d
Branches Tags
netdata
/
health
/
health.d
/
web_log.conf

web_log.conf 6.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193 
  1. 

  2. # make sure we can collect web log data
    3. 

  3. 

  4. template: last_collected_secs
    5. 

  5.       on: web_log.response_codes
    6. 

  6. families: *
    7. 

  7.     calc: $now - $last_collected_t
    8. 

  8.    units: seconds ago
    9. 

  9.    every: 10s
    10. 

  10.     warn: $this > (($status >= $WARNING)  ? ($update_every) : ( 5 * $update_every))
    11. 

  11.     crit: $this > (($status == $CRITICAL) ? ($update_every) : (60 * $update_every))
    12. 

  12.    delay: down 5m multiplier 1.5 max 1h
    13. 

  13.     info: number of seconds since the last successful data collection
    14. 

  14.       to: webmaster
    15. 

  15. 

  16. 

  17. # -----------------------------------------------------------------------------
    18. 

  18. # high level response code alarms
    19. 

  19. 

  20. # the following alarms trigger only when there are enough data.
    21. 

  21. # we assume there are enough data when:
    22. 

  22. #
    23. 

  23. #  $1m_requests > 120
    24. 

  24. #
    25. 

  25. # i.e. when there are at least 120 requests during the last minute
    26. 

  26. 

  27. template: 1m_requests
    28. 

  28.       on: web_log.response_statuses
    29. 

  29. families: *
    30. 

  30.   lookup: sum -1m unaligned
    31. 

  31.     calc: ($this == 0)?(1):($this)
    32. 

  32.    units: requests
    33. 

  33.    every: 10s
    34. 

  34.     info: the sum of all HTTP requests over the last minute
    35. 

  35. 

  36. template: 1m_successful
    37. 

  37.       on: web_log.response_statuses
    38. 

  38. families: *
    39. 

  39.   lookup: sum -1m unaligned of successful_requests
    40. 

  40.     calc: $this * 100 / $1m_requests
    41. 

  41.    units: %
    42. 

  42.    every: 10s
    43. 

  43.     warn: ($1m_requests > 120) ? ($this < (($status >= $WARNING ) ? ( 95 ) : ( 85 )) ) : ( 0 )
    44. 

  44.     crit: ($1m_requests > 120) ? ($this < (($status == $CRITICAL) ? ( 85 ) : ( 75 )) ) : ( 0 )
    45. 

  45.    delay: up 2m down 15m multiplier 1.5 max 1h
    46. 

  46.     info: the ratio of successful HTTP responses (1xx, 2xx, 304) over the last minute
    47. 

  47.       to: webmaster
    48. 

  48. 

  49. template: 1m_redirects
    50. 

  50.       on: web_log.response_statuses
    51. 

  51. families: *
    52. 

  52.   lookup: sum -1m unaligned of redirects
    53. 

  53.     calc: $this * 100 / $1m_requests
    54. 

  54.    units: %
    55. 

  55.    every: 10s
    56. 

  56.     warn: ($1m_requests > 120) ? ($this > (($status >= $WARNING ) ? (  1 ) : ( 20 )) ) : ( 0 )
    57. 

  57.     crit: ($1m_requests > 120) ? ($this > (($status == $CRITICAL) ? ( 20 ) : ( 30 )) ) : ( 0 )
    58. 

  58.    delay: up 2m down 15m multiplier 1.5 max 1h
    59. 

  59.     info: the ratio of HTTP redirects (3xx except 304) over the last minute
    60. 

  60.       to: webmaster
    61. 

  61. 

  62. template: 1m_bad_requests
    63. 

  63.       on: web_log.response_statuses
    64. 

  64. families: *
    65. 

  65.   lookup: sum -1m unaligned of bad_requests
    66. 

  66.     calc: $this * 100 / $1m_requests
    67. 

  67.    units: %
    68. 

  68.    every: 10s
    69. 

  69.     warn: ($1m_requests > 120) ? ($this > (($status >= $WARNING)  ? ( 10 ) : ( 30 )) ) : ( 0 )
    70. 

  70.     crit: ($1m_requests > 120) ? ($this > (($status == $CRITICAL) ? ( 30 ) : ( 50 )) ) : ( 0 )
    71. 

  71.    delay: up 2m down 15m multiplier 1.5 max 1h
    72. 

  72.     info: the ratio of HTTP bad requests (4xx) over the last minute
    73. 

  73.       to: webmaster
    74. 

  74. 

  75. template: 1m_internal_errors
    76. 

  76.       on: web_log.response_statuses
    77. 

  77. families: *
    78. 

  78.   lookup: sum -1m unaligned of server_errors
    79. 

  79.     calc: $this * 100 / $1m_requests
    80. 

  80.    units: %
    81. 

  81.    every: 10s
    82. 

  82.     warn: ($1m_requests > 120) ? ($this > (($status >= $WARNING)  ? ( 1 ) : ( 2 )) ) : ( 0 )
    83. 

  83.     crit: ($1m_requests > 120) ? ($this > (($status == $CRITICAL) ? ( 2 ) : ( 5 )) ) : ( 0 )
    84. 

  84.    delay: up 2m down 15m multiplier 1.5 max 1h
    85. 

  85.     info: the ratio of HTTP internal server errors (5xx), over the last minute
    86. 

  86.       to: webmaster
    87. 

  87. 

  88. # unmatched lines
    89. 

  89. 

  90. # the following alarms trigger only when there are enough data.
    91. 

  91. # we assume there are enough data when:
    92. 

  92. #
    93. 

  93. #  $1m_total_requests > 120
    94. 

  94. #
    95. 

  95. # i.e. when there are at least 120 requests during the last minute
    96. 

  96. 

  97. template: 1m_total_requests
    98. 

  98.       on: web_log.response_codes
    99. 

  99. families: *
    100. 

  100.   lookup: sum -1m unaligned
    101. 

  101.     calc: ($this == 0)?(1):($this)
    102. 

  102.    units: requests
    103. 

  103.    every: 10s
    104. 

  104.     info: the sum of all HTTP requests over the last minute
    105. 

  105. 

  106. template: 1m_unmatched
    107. 

  107. on: web_log.response_codes
    108. 

  108. families: *
    109. 

  109.   lookup: sum -1m unaligned of unmatched
    110. 

  110.     calc: $this * 100 / $1m_total_requests
    111. 

  111.    units: %
    112. 

  112.    every: 10s
    113. 

  113.     warn: ($1m_total_requests > 120) ? ($this > 1) : ( 0 )
    114. 

  114.     crit: ($1m_total_requests > 120) ? ($this > 5) : ( 0 )
    115. 

  115.    delay: up 1m down 5m multiplier 1.5 max 1h
    116. 

  116.     info: the ratio of unmatched lines, over the last minute
    117. 

  117.       to: webmaster
    118. 

  118. 

  119. # -----------------------------------------------------------------------------
    120. 

  120. # web slow
    121. 

  121. 

  122. # the following alarms trigger only when there are enough data.
    123. 

  123. # we assume there are enough data when:
    124. 

  124. #
    125. 

  125. #  $1m_requests > 120
    126. 

  126. #
    127. 

  127. # i.e. when there are at least 120 requests during the last minute
    128. 

  128. 

  129. template: 10m_response_time
    130. 

  130.       on: web_log.response_time
    131. 

  131. families: *
    132. 

  132.   lookup: average -10m unaligned of avg
    133. 

  133.    units: ms
    134. 

  134.    every: 30s
    135. 

  135.     info: the average time to respond to HTTP requests, over the last 10 minutes
    136. 

  136. 

  137. template: web_slow
    138. 

  138.       on: web_log.response_time
    139. 

  139. families: *
    140. 

  140.   lookup: average -1m unaligned of avg
    141. 

  141.    units: ms
    142. 

  142.    every: 10s
    143. 

  143.    green: 500
    144. 

  144.      red: 1000
    145. 

  145.     warn: ($1m_requests > 120) ? ($this > $green && $this > ($10m_response_time * 2) ) : ( 0 )
    146. 

  146.     crit: ($1m_requests > 120) ? ($this > $red   && $this > ($10m_response_time * 4) ) : ( 0 )
    147. 

  147.    delay: down 15m multiplier 1.5 max 1h
    148. 

  148.     info: the average time to respond to HTTP requests, over the last 1 minute
    149. 

  149.  options: no-clear-notification
    150. 

  150.       to: webmaster
    151. 

  151. 

  152. # -----------------------------------------------------------------------------
    153. 

  153. # web too many or too few requests
    154. 

  154. 

  155. # the following alarms trigger only when there are enough data.
    156. 

  156. # we assume there are enough data when:
    157. 

  157. #
    158. 

  158. #  $5m_successful_old > 120
    159. 

  159. #
    160. 

  160. # i.e. when there were at least 120 requests during the 5 minutes starting
    161. 

  161. #      at -10m and ending at -5m
    162. 

  162. 

  163. template: 5m_successful_old
    164. 

  164.       on: web_log.response_statuses
    165. 

  165. families: *
    166. 

  166.   lookup: average -5m at -5m unaligned of successful_requests
    167. 

  167.    units: requests/s
    168. 

  168.    every: 30s
    169. 

  169.     info: average rate of successful HTTP requests over the last 5 minutes
    170. 

  170. 

  171. template: 5m_successful
    172. 

  172.       on: web_log.response_statuses
    173. 

  173. families: *
    174. 

  174.   lookup: average -5m unaligned of successful_requests
    175. 

  175.    units: requests/s
    176. 

  176.    every: 30s
    177. 

  177.     info: average successful HTTP requests over the last 5 minutes
    178. 

  178. 

  179. template: 5m_requests_ratio
    180. 

  180.       on: web_log.response_codes
    181. 

  181. families: *
    182. 

  182.     calc: ($5m_successful_old > 0)?($5m_successful * 100 / $5m_successful_old):(100)
    183. 

  183.    units: %
    184. 

  184.    every: 30s
    185. 

  185.     warn: ($5m_successful_old > 120) ? ($this > 200 OR $this < 50) : (0)
    186. 

  186.     crit: ($5m_successful_old > 120) ? ($this > 400 OR $this < 25) : (0)
    187. 

  187.    delay: down 15m multiplier 1.5 max 1h
    188. 

  188. options: no-clear-notification
    189. 

  189.     info: the percentage of successful web requests over the last 5 minutes, \
    190. 

  190.           compared with the previous 5 minutes \
    191. 

  191.           (clear notification for this alarm will not be sent)
    192. 

  192.       to: webmaster
    193. 

  193.