Your data. Anywhere you go.

New Relic for iOS or Android


Download on the App Store    Android App on Google play


New Relic Insights App for iOS


Download on the App Store


Learn more

Close icon

Feature Idea: Linking log-based alerts back to log viewer

alerts
feature-idea
configuration

#1

Currently, I can create an alert based on a log query, but I am having trouble finding a good way to link back to the relevant logs from the incident when a violation occurs.

For example:
I can go to New Relic Logs and enter a query to show errors from a specific container, like so:

container_name:“my_container” log.level:“ERROR”

I then use the “Create an alert from this” option to create an alert condition, which converts my log search to the following NRQL query:

SELECT count(*) FROM Log WHERE container_name = ‘my_container’ AND log.level = ‘ERROR’

I set the other options so that I am alerted and an incident is created each time an error occurs in this container.

When an error occurs, the first thing I want to do is check the logs to see what happened immediately before and after the alert was triggered, and maybe expand the results to see what is going on with other containers around the same time. However, the incident page only provides a “Go to Log query overview” link which takes me to Insights and basically just fills in the NRQL query from the alert condition.

Is there any way to link log-based alerts back to the log query that they are based on? Ideally, when an alert is triggered there would be a link in the incident that takes me to the log viewer with the query I initially used to create the alert condition, showing the time window in which the violation occurred (e.g., timestamp +/- 5 minutes).

The best workaround I’ve found is to copy the URL of the log query page and put it in the Runbook URL for the alert condition but that precludes us using the runbook URL to link to relevant documentation, as well as requiring us to update the log query URL every time we change the NRQL alert condition.

Any suggestions you might provide are greatly appreciated!


New Relic Edit

  • I want this too
  • I have more info to share (reply below)
  • I have a solution for this

0 voters

We take feature ideas seriously and our product managers review every one when plotting their roadmaps. However, there is no guarantee this feature will be implemented. This post ensures the idea is put on the table and discussed though. So please vote and share your extra details with our team.


#2

There is a ‘Copy sharable link’ icon at the top of the log details view.

Is that what you are suggesting get captured with the alert?


#3

My understanding is similar @Michael.Ben-David - there is a need for more native Log alerting capabilities, as right now Log alerts == NRQL alerts.

NRQL alerts will always just link back to the query overview. So, I think this request should be turned into a feature idea for native Log specific condition types, which link back to the Logs UI pre-filtered based on the violation that you’re directed from. So to your point, Michael, the violation will point to that Copy Shareable Link location.

I’ll get that feature idea filed for you @bwelker - & I’ll add a poll here for you and others to vote on :slight_smile:


#4

Thank you @RyanVeitch, that sounds like exactly what we’re looking for! :slight_smile:


#5

Great! Thanks for confirming - We’ll update this thread if we hear anything related to this feature idea.