health/health.d/netfilter.conf


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

# you can disable an alarm notification by setting the 'to' line to: silent

   alarm: netfilter_last_collected_secs
      on: netfilter.conntrack_sockets
      os: linux
   hosts: *
    calc: $now - $last_collected_t
   units: seconds ago
   every: 10s
    warn: $this > (($status >= $WARNING)  ? ($update_every) : ( 5 * $update_every))
    crit: $this > (($status == $CRITICAL) ? ($update_every) : (60 * $update_every))
   delay: down 5m multiplier 1.5 max 1h
    info: number of seconds since the last successful data collection
      to: sysadmin

   alarm: netfilter_conntrack_full
      on: netfilter.conntrack_sockets
      os: linux
   hosts: *
  lookup: max -10s unaligned of connections
    calc: $this * 100 / $netfilter_conntrack_max
   units: %
   every: 10s
    warn: $this > (($status >= $WARNING)  ? (70) : (80))
    crit: $this > (($status == $CRITICAL) ? (80) : (90))
   delay: down 5m multiplier 1.5 max 1h
    info: the number of connections tracked by the netfilter connection tracker, as a percentage of the connection tracker table size
      to: sysadmin