F5 ltm email alert customizing.
Hello, I have a questions some F5 ltm email alert. Using the /config/user_alert.conf, and F5 sent email alert to customizing. So I received the email, but email subject was so long long... Examples, "01070638:5: Pool xxxxxx member xxxx:80 monitor status down. [ /Common/xxxxx: down; last error: /Common/xxxxxx: Response Code: 200 (OK); Downed instance came up.; Unable to connec..." I want to email subject customizing that "01070638:5: Pool xxxxxx member xxxx:80 monitor status down." and email body fill the detail syslog include. I read other question that add the text. It's not working that user_alert.conf. alert BIGIP_MCPD_MCPDERR_POOL_MEMBER_MON_STATUS "Pool xxx member xxxxx:80 monitor status down." { snmptrap OID=".1.3.6.1.4.1.3375.2.4.0.10"; email toaddress="gds@wemakeprice.com" body="Subject: Pool xxx member xxxxx:80 monitor status down." } Would please ASAP please give me the solution. waiting for your reply...
False alerts being generated
Once or twice a day My F5 Big IP device would generate email alerts saying that either a that either a monitor was triggered or some network device (server/ firewall) state has been changed from green to red when we know for a fact that the devices are fine and functional. Within less than a minute we would be notified that the issue has been resolved. The system we are monitoring is critical and it would cause a lot of problems if we continue getting these false alerts. I understand that the cause would be that the F5 in not receiving some response within a timeout period and that generates the alerts. Is there a way to fix this? Can I eliminate or at least try to minimize as much these false alerts being generated by F5?
Disable alerts on pool / pool member
Hi, Without disabling the health monitor, is there a way to stop alerts for a particular pool or pool member being sent to my alerting server? I believe the alerting on F5 is a global thing.. And I also assume the health monitor is required for load balancing to take effect... Cheers....
Simplifying the editing of alert.conf on multiple devices
I'm in the process of doing email alert notifications following Sol3667: Configuring alerts to send email notifications. Instead of editing all alert.conf in several BIG-IP's one by one, is it safe to edit one alert.conf, copy the file to a remote computer and paste the file to the other BIG-IP devices? The BIG-IP hardware are 3600's and 1600's. Some are running on software 11.3.0 and some are running on 11.5.1. I saw some alerts intended for blades (e.g. BIGIP_SYSTEM_CHECK_E_BLADE_TEMP_HIGH_1) in the 1600 alert.conf so I was thinking that this file can be applied to any model since this alert is only applicable to the Viprion model. Suggestions for simplifying the process of applying SOL3667 to multiple devices will be highly appreciated.
