citoengine : alert management and automation tool
DESCRIPTION
CitoEngine is a completely open source alert management and automation too. It allows you to manage large volume of alerts and trigger actions. These actions could notify or act on the alert by executing a script (a plugin). It is ideal alert management service for teams who have multiple monitoring systems.TRANSCRIPT
Alert Management & Automation Tool
by Cyrus Dasadia
Who is Cyrus?
● Sysadmin / Part time programmer for over 14+ yrs.● Monty Python fan.● Sr. Tech Lead at InMobi.
Twitter: @ExtremeUnixEmail: [email protected]
Why the long face ?
● You installed the best monitoring application.
● You have awesome monitoring scripts.
● You purchased a monitoring service.
● You have the best NOC/Incident management team.
but..
When things go bad, there is chaos!
Even the best teams succumb to it.
cthuluhu image: http://ordinary-gentlemen.com/blog/2013/10/10/god-digs-ambiguity
So, what leads to this problem?
● As servers and teams grow, there are even more alerts to manage.
● Alerts are not constantly tuned for changing thresholds.
● Monitoring tools generate false positive events.
● Teams don't follow discipline to ack alerts during releases/outages.
What can help manage this chaos?
all logos are trademarks of their respective companies
What can really help ?
A tool that:
● Lets me easily define events.
● Lets me create actions on such events.
● Easily integrates with 3rd party applications.
CitoEngine (psi-tow enn-gin)
CitoEngine
● Define events.
● Send alerts against these events.
● System creates unique incidents for each alert
How CitoEngine Works:
Simply define an event
How CitoEngine Works:
Create an action against that event
How CitoEngine Works: Plugin ServerDefine your plugins
How CitoEngine Works: Plugin ServerRestrict plugins to user bound API Keys
Add the plugin server to the engine:
Voila!
How do I send events?
JSON:
That’s it, nothing else!
CitoEngine: Dashboards
Detailed dashboard of all incidents.
CitoEngine: Dashboards
Current Active/Acknowledged incidents
Reports!
Who would need it?
Anyone who wants to manage alerts efficiently without all the noise.
Ideal for NOC, DevOps and Ops teams
CitoEngine Stack
Server: Django + TwistedMessage queue: SQS, RabbitMQUI: JQuery + BootstrapDatabase: MySQL (MariaDB/PgSQL*)License: Apache 2.0
Completely Open Source!
* Currently being tested
Thank You!
CitoEngine wants you!
http://citoengine.org
[Need contributors for testing, documentation, bug reports, etc.]