Documentation forSolarWinds Observability SaaS

Monitor log volume with Log flood detection

Enable Log flood detection to receive an alert whenever the volume of ingested logs exceeds your configured threshold. Log flood detection regularly checks the volume of logs ingested in the last 10 minutes. As soon as the volume exceeds the threshold, SolarWinds Observability SaaS will send an email notification to chosen recipients. You can also configure alerts to be sent via custom notification channels, such as Slack or Pager Duty. Once the volume has fallen back below the threshold, another email notification will be sent.

Create a new flood detection alert

To create a Log flood detection alert, navigate to Settings > Logs > Flood detection. To create a new alert, specify your ingestion warning threshold and the recipients for email notifications, then click Create alert. A dedicated email notification configuration and a dedicated Alert definition are immediately created and monitoring begins.

A user must have permission to create a Log flood detection alert.

Modify an existing flood detection alert

If you have already created a Log flood detection alert, you can update its threshold by navigating to Settings > Logs > Flood detection. To modify other settings, navigate to Settings > Logs > Flood detection, and select the Alert details link. On the Alert details page, open the three-dot menu, click Edit, and update the setting you want to change. Notification settings and templates can be updated by navigating to Settings > Notification services.