Querying to alert on max value reaching >99% two times in 15m - using "where" syntax error

Follow
Avatar
Krzysztof Stawik

Hello,

I need to alert on the GPU reaching multiple 100% spikes in 15 minutes period. I thought to use "where" but when I try to use it (based on the documentation https://help.sumologic.com/docs/metrics/metrics-operators/where/)  I'm getting a syntax error as on the screenshot (it's just an example copied from docs, the values will be different and I will use the max function to get the peak during a time frame):

The metric itself is working ok. Am I doing something wrong or it is a bug :)?

0

Comments

2 comments

Sort by Date Votes
  • Official comment
    Avatar
    Graham Watts

    Hi Krzysztof, 

    I recommend using Monitors, as this functionality is built in - you can specify the Trigger Type in the UI instead of using query logic to define this:

    https://help.sumologic.com/docs/alerts/monitors/create-monitor/#step-4-specify-the-trigger-type

    Let me know if this helps!

    Thank you,

    Graham

    Comment actions Permalink
  • Avatar
    Krzysztof Stawik

    The trigger allows only to check for a single point or all the time during a period (which minimum is only 5 mins). As I get spikes that last for short time and I don't want to alert on a single one it doesn't work for me, that is why I tried to do a bit more advanced query here.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post