You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1036 lines
74 KiB
1036 lines
74 KiB
{
|
|
"algorithms": {
|
|
"GradientBoostingRegressor": {
|
|
"RMSE": 0,
|
|
"modelId": "",
|
|
"rSquared": 0,
|
|
"recommended": false
|
|
},
|
|
"LinearRegression": {
|
|
"RMSE": 0,
|
|
"modelId": "",
|
|
"rSquared": 0,
|
|
"recommended": false
|
|
},
|
|
"LogisticRegression": {
|
|
"accuracy": 0,
|
|
"f1_score": 0,
|
|
"modelId": "",
|
|
"precision": 0,
|
|
"recall": 0,
|
|
"recommended": false
|
|
},
|
|
"RandomForestRegressor": {
|
|
"RMSE": 0,
|
|
"modelId": "",
|
|
"rSquared": 0,
|
|
"recommended": false
|
|
}
|
|
},
|
|
"description": "The AWS Lambda Service describes AWS Lambda metrics such as Invocations, Errors, Heartbeat, Throttling, and Duration.",
|
|
"enabled": true,
|
|
"entity_rules": [
|
|
{
|
|
"rule_condition": "AND",
|
|
"rule_items": [
|
|
{
|
|
"field": "ITSIUniqueId",
|
|
"field_type": "alias",
|
|
"rule_type": "matches",
|
|
"value": "*"
|
|
},
|
|
{
|
|
"field": "Cloud",
|
|
"field_type": "info",
|
|
"rule_type": "matches",
|
|
"value": "AWS"
|
|
},
|
|
{
|
|
"field": "entity_type",
|
|
"field_type": "info",
|
|
"rule_type": "matches",
|
|
"value": "AWS Lambda"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"key": "da-itsi-cp-splunk-observability-aws-lambda",
|
|
"kpis": [
|
|
{
|
|
"adaptive_thresholding_training_window": "-7d",
|
|
"adaptive_thresholds_is_enabled": false,
|
|
"aggregate_eval": "",
|
|
"aggregate_statop": "avg",
|
|
"aggregate_threshold_alert_enabled": false,
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#B50101",
|
|
"severity_color_light": "#E5A6A6",
|
|
"severity_label": "critical",
|
|
"severity_label_localized": null,
|
|
"severity_value": 6.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": null,
|
|
"severity_value": 5.0,
|
|
"threshold_value": 20.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#FCB64E",
|
|
"severity_color_light": "#FEE6C1",
|
|
"severity_label": "medium",
|
|
"severity_label_localized": null,
|
|
"severity_value": 4.0,
|
|
"threshold_value": 40.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#FFE98C",
|
|
"severity_color_light": "#FFF4C5",
|
|
"severity_label": "low",
|
|
"severity_label_localized": null,
|
|
"severity_value": 3.0,
|
|
"threshold_value": 60.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": null,
|
|
"severity_value": 2.0,
|
|
"threshold_value": 80.0
|
|
}
|
|
]
|
|
},
|
|
"aggregate_thresholds_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_rules": [],
|
|
"alert_eval": "",
|
|
"alert_lag": "30",
|
|
"alert_on": "both",
|
|
"alert_period": "1",
|
|
"anomaly_detection_alerting_enabled": false,
|
|
"anomaly_detection_is_enabled": false,
|
|
"anomaly_detection_sensitivity": 0.999,
|
|
"anomaly_detection_training_window": "-7d",
|
|
"backfill_earliest_time": "-7d",
|
|
"backfill_enabled": false,
|
|
"base_search": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)`",
|
|
"base_search_id": null,
|
|
"base_search_metric": null,
|
|
"cohesive_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"cohesive_anomaly_detection_is_enabled": false,
|
|
"datamodel": {
|
|
"datamodel": "",
|
|
"field": "",
|
|
"object": "",
|
|
"owner_field": ""
|
|
},
|
|
"datamodel_filter": [],
|
|
"datamodel_filter_clauses": null,
|
|
"description": "",
|
|
"enabled": false,
|
|
"entity_filter_field": "",
|
|
"entity_split_field": "",
|
|
"entity_statop": "avg",
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#B50101",
|
|
"severity_color_light": "#E5A6A6",
|
|
"severity_label": "critical",
|
|
"severity_label_localized": null,
|
|
"severity_value": 6.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": null,
|
|
"severity_value": 5.0,
|
|
"threshold_value": 20.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#FCB64E",
|
|
"severity_color_light": "#FEE6C1",
|
|
"severity_label": "medium",
|
|
"severity_label_localized": null,
|
|
"severity_value": 4.0,
|
|
"threshold_value": 40.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#FFE98C",
|
|
"severity_color_light": "#FFF4C5",
|
|
"severity_label": "low",
|
|
"severity_label_localized": null,
|
|
"severity_value": 3.0,
|
|
"threshold_value": 60.0
|
|
},
|
|
{
|
|
"dynamic_param": null,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": null,
|
|
"severity_value": 2.0,
|
|
"threshold_value": 80.0
|
|
}
|
|
]
|
|
},
|
|
"fill_gaps": "null_value",
|
|
"gap_custom_alert_value": 0.0,
|
|
"gap_severity": "unknown",
|
|
"gap_severity_color": "#CCCCCC",
|
|
"gap_severity_color_light": "#EEEEEE",
|
|
"gap_severity_value": "-1",
|
|
"is_filter_entities_to_service": false,
|
|
"is_split_by_entity": false,
|
|
"key": "SHKPI-da-itsi-cp-splunk-observability-aws-lambda",
|
|
"kpi_base_search": "",
|
|
"kpi_template_kpi_id": "",
|
|
"kpi_threshold_template_id": "",
|
|
"metric_qualifier": null,
|
|
"metric_search_spec": {
|
|
"metric_index": "",
|
|
"metric_name": ""
|
|
},
|
|
"search": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)` | stats latest(health_score) AS aggregate",
|
|
"search_aggregate": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)` | stats latest(health_score) AS aggregate",
|
|
"search_alert": "",
|
|
"search_alert_earliest": "15",
|
|
"search_alert_entities": "",
|
|
"search_buckets": "",
|
|
"search_entities": null,
|
|
"search_occurrences": 1.0,
|
|
"search_time_compare": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)` [| stats count | addinfo | eval search= \"earliest=\" + tostring(info_min_time-(info_max_time-info_min_time))+ \" latest=\" + tostring(info_max_time) |fields search] | addinfo | eval bucket=if(_time<info_max_time-((info_max_time-info_min_time)/2), \"last_window\", \"current_window\") | stats avg(health_score) AS aggregate BY bucket | reverse | delta aggregate AS window_delta | search bucket=current_window | eval window_direction=if(window_delta >0, \"increase\", if(window_delta < 0, \"decrease\", \"none\"))",
|
|
"search_time_series": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)` | timechart avg(health_score) AS aggregate",
|
|
"search_time_series_aggregate": "`get_full_itsi_summary_service_health_events(da-itsi-cp-splunk-observability-aws-lambda)` | timechart avg(health_score) AS aggregate",
|
|
"search_time_series_entities": "",
|
|
"search_type": "adhoc",
|
|
"service_title": "AWS Lambda",
|
|
"threshold_eval": "",
|
|
"threshold_field": "aggregate",
|
|
"time_policies": {
|
|
"policies": {
|
|
"default_policy": {
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#AED3E5",
|
|
"base_severity_color_light": "#E3F0F6",
|
|
"base_severity_label": "info",
|
|
"base_severity_value": 1.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#AED3E5",
|
|
"base_severity_color_light": "#E3F0F6",
|
|
"base_severity_label": "info",
|
|
"base_severity_value": 1.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"policy_type": "static",
|
|
"time_blocks": [],
|
|
"title": "Default"
|
|
}
|
|
}
|
|
},
|
|
"title": "ServiceHealthScore",
|
|
"trending_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"type": "service_health",
|
|
"tz_offset": null,
|
|
"unit": "",
|
|
"urgency": 11.0,
|
|
"use_time_policies": false
|
|
},
|
|
{
|
|
"adaptive_thresholding_training_window": "-7d",
|
|
"adaptive_thresholds_is_enabled": false,
|
|
"aggregate_eval": "",
|
|
"aggregate_statop": "avg",
|
|
"aggregate_threshold_alert_enabled": false,
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 880000,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "aggregate",
|
|
"render_boundary_max": 880000.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#FFE98C",
|
|
"severity_color_light": "#FFF4C5",
|
|
"severity_label": "low",
|
|
"severity_label_localized": "Low",
|
|
"severity_value": 3.0,
|
|
"threshold_value": 200000.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#FCB64E",
|
|
"severity_color_light": "#FEE6C1",
|
|
"severity_label": "medium",
|
|
"severity_label_localized": "Medium",
|
|
"severity_value": 4.0,
|
|
"threshold_value": 400000.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 800000.0
|
|
}
|
|
]
|
|
},
|
|
"aggregate_thresholds_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_rules": [],
|
|
"alert_eval": "",
|
|
"alert_lag": "600",
|
|
"alert_on": "both",
|
|
"alert_period": "5",
|
|
"anomaly_detection_alerting_enabled": false,
|
|
"anomaly_detection_is_enabled": false,
|
|
"anomaly_detection_sensitivity": null,
|
|
"anomaly_detection_training_window": null,
|
|
"backfill_earliest_time": "-7d",
|
|
"backfill_enabled": false,
|
|
"base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"base_search_id": "da-itsi-cp-splunk-observability-sim-cloud-aws-lambda",
|
|
"base_search_metric": "aws-lambda-duration",
|
|
"cohesive_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"cohesive_anomaly_detection_is_enabled": false,
|
|
"datamodel": {
|
|
"datamodel": "",
|
|
"field": "",
|
|
"object": "",
|
|
"owner_field": ""
|
|
},
|
|
"datamodel_filter": [],
|
|
"datamodel_filter_clauses": null,
|
|
"description": "The Lambda Duration KPI describes the amount of time that your function code spends processing an event. The billed duration for an invocation is the value of Duration rounded up to the nearest millisecond.",
|
|
"enabled": true,
|
|
"entity_filter_field": "host",
|
|
"entity_split_field": "ITSIUniqueId",
|
|
"entity_statop": "avg",
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 880000,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "shared_base",
|
|
"render_boundary_max": 880000.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#FFE98C",
|
|
"severity_color_light": "#FFF4C5",
|
|
"severity_label": "low",
|
|
"severity_label_localized": "Low",
|
|
"severity_value": 3.0,
|
|
"threshold_value": 200000.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#FCB64E",
|
|
"severity_color_light": "#FEE6C1",
|
|
"severity_label": "medium",
|
|
"severity_label_localized": "Medium",
|
|
"severity_value": 4.0,
|
|
"threshold_value": 400000.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 800000.0
|
|
}
|
|
]
|
|
},
|
|
"fill_gaps": "null_value",
|
|
"gap_custom_alert_value": 0.0,
|
|
"gap_severity": "unknown",
|
|
"gap_severity_color": "#CCCCCC",
|
|
"gap_severity_color_light": "#EEEEEE",
|
|
"gap_severity_value": "-1",
|
|
"is_filter_entities_to_service": false,
|
|
"is_split_by_entity": true,
|
|
"key": "da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c",
|
|
"kpi_base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"kpi_template_kpi_id": "",
|
|
"kpi_threshold_template_id": "",
|
|
"metric_qualifier": "",
|
|
"metric_search_spec": {
|
|
"metric_index": "",
|
|
"metric_name": ""
|
|
},
|
|
"search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(avg, aws_lambda_duration, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(avg)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c, true, true, true)` | eval kpi=\"AWS Lambda Duration\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(avg, avg, aws_lambda_duration, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c)`",
|
|
"search_alert": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(avg, aws_lambda_duration, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(avg)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c, true, true, true)` | eval kpi=\"AWS Lambda Duration\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_alert_earliest": "15",
|
|
"search_alert_entities": "",
|
|
"search_buckets": "",
|
|
"search_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(avg, avg, aws_lambda_duration, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c)`",
|
|
"search_occurrences": 1.0,
|
|
"search_time_compare": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_and_compare(avg, avg, aws_lambda_duration, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c)`",
|
|
"search_time_series": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(avg, aws_lambda_duration, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(avg, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c)`",
|
|
"search_time_series_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(avg, aws_lambda_duration, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(avg, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-2c9004852f52a50c610f458c)`",
|
|
"search_time_series_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_limited_entity_time_series(avg, aws_lambda_duration, \"ITSIUniqueId\", 15)`",
|
|
"search_type": "shared_base",
|
|
"service_title": "AWS Lambda",
|
|
"threshold_eval": "",
|
|
"threshold_field": "aws_lambda_duration",
|
|
"time_policies": {
|
|
"policies": {
|
|
"default_policy": {
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"policy_type": "static",
|
|
"time_blocks": [],
|
|
"title": "Default"
|
|
}
|
|
}
|
|
},
|
|
"title": "AWS Lambda Duration",
|
|
"trending_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"type": "kpis_primary",
|
|
"tz_offset": null,
|
|
"unit": "ms",
|
|
"urgency": 5.0,
|
|
"use_time_policies": false
|
|
},
|
|
{
|
|
"adaptive_thresholding_training_window": "-7d",
|
|
"adaptive_thresholds_is_enabled": false,
|
|
"aggregate_eval": "",
|
|
"aggregate_statop": "latest",
|
|
"aggregate_threshold_alert_enabled": false,
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 1,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "aggregate",
|
|
"render_boundary_max": 1.1,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": "Normal",
|
|
"severity_value": 2.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 1.0
|
|
}
|
|
]
|
|
},
|
|
"aggregate_thresholds_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_rules": [],
|
|
"alert_eval": "",
|
|
"alert_lag": "600",
|
|
"alert_on": "both",
|
|
"alert_period": "5",
|
|
"anomaly_detection_alerting_enabled": false,
|
|
"anomaly_detection_is_enabled": false,
|
|
"anomaly_detection_sensitivity": null,
|
|
"anomaly_detection_training_window": null,
|
|
"backfill_earliest_time": "-7d",
|
|
"backfill_enabled": false,
|
|
"base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"base_search_id": "da-itsi-cp-splunk-observability-sim-cloud-aws-lambda",
|
|
"base_search_metric": "aws-lambda-errors",
|
|
"cohesive_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"cohesive_anomaly_detection_is_enabled": false,
|
|
"datamodel": {
|
|
"datamodel": "",
|
|
"field": "",
|
|
"object": "",
|
|
"owner_field": ""
|
|
},
|
|
"datamodel_filter": [],
|
|
"datamodel_filter_clauses": null,
|
|
"description": "The number of invocations that result in a function error. Function errors include exceptions thrown by your code and exceptions thrown by the Lambda runtime.",
|
|
"enabled": true,
|
|
"entity_filter_field": "host",
|
|
"entity_split_field": "ITSIUniqueId",
|
|
"entity_statop": "latest",
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 1,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "shared_base",
|
|
"render_boundary_max": 39.6,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": "Normal",
|
|
"severity_value": 2.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 1.0
|
|
}
|
|
]
|
|
},
|
|
"fill_gaps": "null_value",
|
|
"gap_custom_alert_value": 0.0,
|
|
"gap_severity": "unknown",
|
|
"gap_severity_color": "#CCCCCC",
|
|
"gap_severity_color_light": "#EEEEEE",
|
|
"gap_severity_value": "-1",
|
|
"is_filter_entities_to_service": false,
|
|
"is_split_by_entity": true,
|
|
"key": "da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc",
|
|
"kpi_base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"kpi_template_kpi_id": "",
|
|
"kpi_threshold_template_id": "",
|
|
"metric_qualifier": "",
|
|
"metric_search_spec": {
|
|
"metric_index": "",
|
|
"metric_name": ""
|
|
},
|
|
"search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_errors, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc, true, true, true)` | eval kpi=\"AWS Lambda Errors\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_errors, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc)`",
|
|
"search_alert": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_errors, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc, true, true, true)` | eval kpi=\"AWS Lambda Errors\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_alert_earliest": "15",
|
|
"search_alert_entities": "",
|
|
"search_buckets": "",
|
|
"search_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_errors, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc)`",
|
|
"search_occurrences": 1.0,
|
|
"search_time_compare": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_and_compare(latest, latest, aws_lambda_errors, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc)`",
|
|
"search_time_series": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_errors, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc)`",
|
|
"search_time_series_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_errors, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-ef73d65fb5284984a7bf6bdc)`",
|
|
"search_time_series_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_limited_entity_time_series(latest, aws_lambda_errors, \"ITSIUniqueId\", 15)`",
|
|
"search_type": "shared_base",
|
|
"service_title": "AWS Lambda",
|
|
"threshold_eval": "",
|
|
"threshold_field": "aws_lambda_errors",
|
|
"time_policies": {
|
|
"policies": {
|
|
"default_policy": {
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"policy_type": "static",
|
|
"time_blocks": [],
|
|
"title": "Default"
|
|
}
|
|
}
|
|
},
|
|
"title": "AWS Lambda Errors",
|
|
"trending_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"type": "kpis_primary",
|
|
"tz_offset": null,
|
|
"unit": "",
|
|
"urgency": 5.0,
|
|
"use_time_policies": false
|
|
},
|
|
{
|
|
"adaptive_thresholding_training_window": "-7d",
|
|
"adaptive_thresholds_is_enabled": false,
|
|
"aggregate_eval": "",
|
|
"aggregate_statop": "latest",
|
|
"aggregate_threshold_alert_enabled": false,
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "aggregate",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"aggregate_thresholds_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_rules": [],
|
|
"alert_eval": "",
|
|
"alert_lag": "600",
|
|
"alert_on": "both",
|
|
"alert_period": "5",
|
|
"anomaly_detection_alerting_enabled": false,
|
|
"anomaly_detection_is_enabled": false,
|
|
"anomaly_detection_sensitivity": null,
|
|
"anomaly_detection_training_window": null,
|
|
"backfill_earliest_time": "-7d",
|
|
"backfill_enabled": false,
|
|
"base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"base_search_id": "da-itsi-cp-splunk-observability-sim-cloud-aws-lambda",
|
|
"base_search_metric": "aws-lambda-invocations",
|
|
"cohesive_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"cohesive_anomaly_detection_is_enabled": false,
|
|
"datamodel": {
|
|
"datamodel": "",
|
|
"field": "",
|
|
"object": "",
|
|
"owner_field": ""
|
|
},
|
|
"datamodel_filter": [],
|
|
"datamodel_filter_clauses": null,
|
|
"description": "The number of times your function code is executed, including successful executions and executions that result in a function error. Invocations aren't recorded if the invocation request is throttled or otherwise resulted in an invocation error.",
|
|
"enabled": true,
|
|
"entity_filter_field": "host",
|
|
"entity_split_field": "ITSIUniqueId",
|
|
"entity_statop": "latest",
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "shared_base",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"fill_gaps": "null_value",
|
|
"gap_custom_alert_value": 0.0,
|
|
"gap_severity": "unknown",
|
|
"gap_severity_color": "#CCCCCC",
|
|
"gap_severity_color_light": "#EEEEEE",
|
|
"gap_severity_value": "-1",
|
|
"is_filter_entities_to_service": false,
|
|
"is_split_by_entity": true,
|
|
"key": "da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2",
|
|
"kpi_base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"kpi_template_kpi_id": "",
|
|
"kpi_threshold_template_id": "",
|
|
"metric_qualifier": "",
|
|
"metric_search_spec": {
|
|
"metric_index": "",
|
|
"metric_name": ""
|
|
},
|
|
"search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_invocations, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2, true, true, true)` | eval kpi=\"AWS Lambda Invocations\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2)`",
|
|
"search_alert": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_invocations, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2, true, true, true)` | eval kpi=\"AWS Lambda Invocations\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_alert_earliest": "15",
|
|
"search_alert_entities": "",
|
|
"search_buckets": "",
|
|
"search_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2)`",
|
|
"search_occurrences": 1.0,
|
|
"search_time_compare": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_and_compare(latest, latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2)`",
|
|
"search_time_series": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2)`",
|
|
"search_time_series_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-825fedd1c27471e7144856c2)`",
|
|
"search_time_series_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_limited_entity_time_series(latest, aws_lambda_invocations, \"ITSIUniqueId\", 15)`",
|
|
"search_type": "shared_base",
|
|
"service_title": "AWS Lambda",
|
|
"threshold_eval": "",
|
|
"threshold_field": "aws_lambda_invocations",
|
|
"time_policies": {
|
|
"policies": {
|
|
"default_policy": {
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"policy_type": "static",
|
|
"time_blocks": [],
|
|
"title": "Default"
|
|
}
|
|
}
|
|
},
|
|
"title": "AWS Lambda Invocations",
|
|
"trending_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"type": "kpis_primary",
|
|
"tz_offset": null,
|
|
"unit": "",
|
|
"urgency": 5.0,
|
|
"use_time_policies": false
|
|
},
|
|
{
|
|
"adaptive_thresholding_training_window": "-7d",
|
|
"adaptive_thresholds_is_enabled": false,
|
|
"aggregate_eval": "",
|
|
"aggregate_statop": "latest",
|
|
"aggregate_threshold_alert_enabled": false,
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 1,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "aggregate",
|
|
"render_boundary_max": 1.1,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": "Normal",
|
|
"severity_value": 2.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 1.0
|
|
}
|
|
]
|
|
},
|
|
"aggregate_thresholds_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_enabled": false,
|
|
"aggregate_thresholds_custom_alert_rules": [],
|
|
"alert_eval": "",
|
|
"alert_lag": "600",
|
|
"alert_on": "both",
|
|
"alert_period": "5",
|
|
"anomaly_detection_alerting_enabled": false,
|
|
"anomaly_detection_is_enabled": false,
|
|
"anomaly_detection_sensitivity": null,
|
|
"anomaly_detection_training_window": null,
|
|
"backfill_earliest_time": "-7d",
|
|
"backfill_enabled": false,
|
|
"base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"base_search_id": "da-itsi-cp-splunk-observability-sim-cloud-aws-lambda",
|
|
"base_search_metric": "aws-lambda-throttles",
|
|
"cohesive_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"cohesive_anomaly_detection_is_enabled": false,
|
|
"datamodel": {
|
|
"datamodel": "",
|
|
"field": "",
|
|
"object": "",
|
|
"owner_field": ""
|
|
},
|
|
"datamodel_filter": [],
|
|
"datamodel_filter_clauses": null,
|
|
"description": "The number of invocation requests that are throttled. When all function instances are processing requests and no concurrency is available to scale up, Lambda rejects additional requests with TooManyRequestsException. Throttled requests and other invocation errors don't",
|
|
"enabled": true,
|
|
"entity_filter_field": "host",
|
|
"entity_split_field": "ITSIUniqueId",
|
|
"entity_statop": "latest",
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 1,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "shared_base",
|
|
"render_boundary_max": 1.1,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": [
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#99D18B",
|
|
"severity_color_light": "#DCEFD7",
|
|
"severity_label": "normal",
|
|
"severity_label_localized": "Normal",
|
|
"severity_value": 2.0,
|
|
"threshold_value": 0.0
|
|
},
|
|
{
|
|
"dynamic_param": 0.0,
|
|
"severity_color": "#F26A35",
|
|
"severity_color_light": "#FBCBB9",
|
|
"severity_label": "high",
|
|
"severity_label_localized": "High",
|
|
"severity_value": 5.0,
|
|
"threshold_value": 1.0
|
|
}
|
|
]
|
|
},
|
|
"fill_gaps": "null_value",
|
|
"gap_custom_alert_value": 0.0,
|
|
"gap_severity": "unknown",
|
|
"gap_severity_color": "#CCCCCC",
|
|
"gap_severity_color_light": "#EEEEEE",
|
|
"gap_severity_value": "-1",
|
|
"is_filter_entities_to_service": false,
|
|
"is_split_by_entity": true,
|
|
"key": "da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194",
|
|
"kpi_base_search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles",
|
|
"kpi_template_kpi_id": "",
|
|
"kpi_threshold_template_id": "",
|
|
"metric_qualifier": "",
|
|
"metric_search_spec": {
|
|
"metric_index": "",
|
|
"metric_name": ""
|
|
},
|
|
"search": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_throttles, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194, true, true, true)` | eval kpi=\"AWS Lambda Throttles\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194)`",
|
|
"search_alert": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity(latest, aws_lambda_throttles, \"ITSIUniqueId\")` | eval sec_grp = \"default_itsi_security_group\" | `match_entities(ITSIUniqueId, sec_grp)` | eval serviceid = \"da-itsi-cp-splunk-observability-aws-lambda\" | `aggregate_entity_into_service(latest)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194, true, true, true)` | eval kpi=\"AWS Lambda Throttles\", urgency=\"5.0\", alert_period=\"5\", serviceid=\"da-itsi-cp-splunk-observability-aws-lambda\" | `assess_urgency` | `gettime`",
|
|
"search_alert_earliest": "15",
|
|
"search_alert_entities": "",
|
|
"search_buckets": "",
|
|
"search_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_single_value(latest, latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194)`",
|
|
"search_occurrences": 1.0,
|
|
"search_time_compare": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_and_compare(latest, latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194)`",
|
|
"search_time_series": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194)`",
|
|
"search_time_series_aggregate": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_entity_time_series(latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)` | `aggregate_entity_into_service_time_series(latest, 15)` | `assess_severity(da-itsi-cp-splunk-observability-aws-lambda, da-itsi-cp-splunk-observability-5c96fed73d1c60151186f194)`",
|
|
"search_time_series_entities": "| mstats sum(\"Duration\") as aws_lambda_duration,\nsum(\"Invocations\") as aws_lambda_invocations,\nsum(\"Errors\") as aws_lambda_errors,\nsum(\"Throttles\") as aws_lambda_throttles\nwhere namespace=\"AWS/Lambda\" AND Resource=* AND `itsi-cp-observability-indexes` by aws_account_id, aws_region, aws_function_name span=15m\n| eval ITSIUniqueId = aws_account_id + aws_region + aws_function_name | eval Cloud=\"AWS\" | table _time, ITSIUniqueId, aws_lambda_invocations, aws_lambda_errors, aws_lambda_duration, aws_lambda_throttles | `aggregate_raw_into_limited_entity_time_series(latest, aws_lambda_throttles, \"ITSIUniqueId\", 15)`",
|
|
"search_type": "shared_base",
|
|
"service_title": "AWS Lambda",
|
|
"threshold_eval": "",
|
|
"threshold_field": "aws_lambda_throttles",
|
|
"time_policies": {
|
|
"policies": {
|
|
"default_policy": {
|
|
"aggregate_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"entity_thresholds": {
|
|
"base_severity_color": "#99D18B",
|
|
"base_severity_color_light": "#DCEFD7",
|
|
"base_severity_label": "normal",
|
|
"base_severity_value": 2.0,
|
|
"gauge_max": 100,
|
|
"gauge_min": 0,
|
|
"is_max_static": false,
|
|
"is_min_static": true,
|
|
"metric_field": "count",
|
|
"render_boundary_max": 100.0,
|
|
"render_boundary_min": 0.0,
|
|
"threshold_levels": []
|
|
},
|
|
"policy_type": "static",
|
|
"time_blocks": [],
|
|
"title": "Default"
|
|
}
|
|
}
|
|
},
|
|
"title": "AWS Lambda Throttles",
|
|
"trending_ad": {
|
|
"sensitivity": 8
|
|
},
|
|
"type": "kpis_primary",
|
|
"tz_offset": null,
|
|
"unit": "",
|
|
"urgency": 5.0,
|
|
"use_time_policies": false
|
|
}
|
|
],
|
|
"service_tags": {
|
|
"tags": [],
|
|
"template_tags": []
|
|
},
|
|
"service_template_id": "",
|
|
"services_depending_on_me": [
|
|
{
|
|
"kpis_depending_on": [
|
|
"SHKPI-da-itsi-cp-splunk-observability-aws-lambda"
|
|
],
|
|
"service_id": "da-itsi-cp-splunk-observability-aws"
|
|
}
|
|
],
|
|
"services_depends_on": [],
|
|
"team_id": "default_itsi_security_group",
|
|
"title": "AWS Lambda",
|
|
"version": "0.0.38"
|
|
} |