15. 04. 2022 Giuseppe Di Garbo NetEye

Scheduled Downtime Management

The correct configuration and scheduling of downtime is an essential element of a monitoring system for several reasons:

  • Mitigating notifications
  • Providing IT operations and Service Desk teams with timely information about when monitored systems may be subject to faults due to maintenance
  • Managing patching, reboot and maintenance procedures that are now typical of all IT systems

Downtimes can be manually configured from the NetEye interface, but they can also be scheduled to run automatically thanks to the Scheduled Downtimes interface available in the Director module.

But how should you proceed in complex environments where there are many hosts which to apply this configuration to?

To try to answer this question I would like to share the approach we took in a recent implementation at a customer.

The IT organization of this customer had defined internal policies for each group of systems, providing for different maintenance windows relating to patching activities, scheduled reboots, backups, etc.

Here are some examples:

  • S1 – 8th Day (from 01 to 06 AM)
  • S2 – The last Monday (from 01 to 06 AM)
  • S3 – 4th Monday (from 01 to 06 AM)
  • S4 – 4th Sunday (from 2 to 6 PM)
  • S5 – Every Day (from 3 AM to 4 AM)

Starting from this type of schedule, we agreed to make sure that each host monitored in NetEye had an associated policy configured via a dedicated CustomVar, and to exploit this information to “trigger” downtime.

The management process includes the following steps:

  • Hosts are regularly updated in NetEye by importing the policy or policies associated with an automation process from the corporate CMDB. These policies are written in a dedicated CustomVar of each host named update_collection.
  • The Scheduled Downtimes have been defined following the corresponding timeperiod for each policy and using the CustomVar (update_collection) as the only filter under “Assign where”.

In this way, each host that has a specific associated policy is automatically put into downtime using the aforementioned rule.

Here are some configuration examples that I hope will also be useful for others when implementing a similar approach.

As reported in the examples above, each customer policy has been associated with a unique code (S1, S2, …). A specific timeperiod has been defined for each of these policies:

  • S1: day 8 (01:00-06:00)
  • S2: monday-1 (01:00-06:00)
  • S3: tuesday-4 (01:00-06:00)
  • S4: sunday-4 (14:00-18:00)


For “S5 – Every Day (from 3 AM to 4 AM)”, here are the configured timeperiods:

Additional examples on the possible configurations of timeperiods can be found here.

Below is an example of scheduled downtime configured in Director where you can see the filter used in the “Assign where” rule:

And finally, an example of a host with active scheduled downtime:

These Solutions are Engineered by Humans

Did you find this article interesting? Does it match your skill set? Our customers often present us with problems that need customized solutions. In fact, we’re currently hiring for roles just like this and others here at Würth Phoenix.

Giuseppe Di Garbo

Giuseppe Di Garbo

Consultant at Würth Phoenix
Hi everybody. I’m Giuseppe and I was born in Milan in 1979. Since the early years of university, I was attracted by the Open Source world and operating system GNU\Linux. After graduation I had the opportunity to participate in a project of a startup for the realization of an Internet Service Provider. Before joining Würth Phoenix as SI consultant, I gained great experience as an IT consultant on projects related to business continuity and implementation of open source software compliant to ITIL processes of incident, change and service catalog management. My free time is completely dedicated to my wife and, as soon as possible, run away from Milan and his caotic time and trekking discover our beautiful mountain near Lecco for relax and lookup the (clean) sky.

Author

Giuseppe Di Garbo

Hi everybody. I’m Giuseppe and I was born in Milan in 1979. Since the early years of university, I was attracted by the Open Source world and operating system GNU\Linux. After graduation I had the opportunity to participate in a project of a startup for the realization of an Internet Service Provider. Before joining Würth Phoenix as SI consultant, I gained great experience as an IT consultant on projects related to business continuity and implementation of open source software compliant to ITIL processes of incident, change and service catalog management. My free time is completely dedicated to my wife and, as soon as possible, run away from Milan and his caotic time and trekking discover our beautiful mountain near Lecco for relax and lookup the (clean) sky.

Latest posts by Giuseppe Di Garbo

30. 10. 2023 Atlassian, NetEye
How to Monitor NetEye with OpsGenie Heartbeats
23. 06. 2023 Icinga Web 2, NetEye
Scheduling Downtime on Linux Environments
09. 06. 2023 ITOA, NetEye
Monitoring, Collection of Metrics and Dashboard of the NetEye Database
28. 12. 2022 NetEye
Monitoring Automation in Director
21. 10. 2022 Icinga Web 2, ITOA, NetEye
A Custom Dashboard for Windows and Linux Servers
See All

Related Content

Tags: ,

06. 12. 2023 Business Service Monitoring, NetEye

Monitoring a Business Process

Scenario NetEye 4 is a comprehensive monitoring platform which natively supports Business Processes. A Business Process is an abstract view of a customer’s Business from the Application point of view. Usually, it’s a collection of Icinga2 checks aggregated by “AND, Read More
30. 11. 2023 Log Management, Log-SIEM, NetEye, Unified Monitoring

Monitor Your Elasticsearch Agents Registered in the Elastic Fleet Server

Say you're using the SIEM Module in NetEye and are deploying the Elasticsearch Agent to your clients. You'd surely like to know if those agents are still sending data and are still connected to the Elastic Fleet server. I had Read More
30. 10. 2023 Atlassian, NetEye

How to Monitor NetEye with OpsGenie Heartbeats

Have you ever thought about how to monitor your NetEye system or other critical applications in a network failure scenario? To manage this scenario, in some customer cases some solutions have been implemented using SMS notifications, thus relying on the Read More
09. 10. 2023 Log-SIEM, Machine Learning, NetEye

Semantic Search in Elasticsearch – Testing Our NetEye Guide: Can We Improve the Search Experience? (Part 2) 

In my previous blog post, we saw how it's possible to index some documents that we created by crawling our NetEye User Guide, then applying the ELSER model in Elasticsearch to create a bag of words for searching that takes Read More
03. 10. 2023 Log-SIEM, Machine Learning, NetEye

Semantic Search in Elasticsearch – Testing Our NetEye Guide: Can We Improve the Search Experience? (Part 1)

Once upon a time (in fact it was just a month ago, but it sounds more dramatic this way) I had the opportunity to attend a webinar about Vector Search, Generative AI, and modern NLP by the Elastic Team. One Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive