Hi, Zabbix Forum
Each branch office have 2 public IP addresses (primary and secondary in a Firewall HA cluster) that we need to monitor for outages.
Currently, we are receiving X amount of alerts when both firewalls are down, but we'd like to use event correlation to minimise the amount of events generated. I have seen lots of guides and blogs online that show how to implement this when there is only one firewall, but in our instance, we have 2. We do not want to event correlate when only 1 firewall is offline as there could be a different Root cause unrelated to the firewalls.
Is there anyway to correlate two events relating to both public IP addresses being down that will minimise the amount of alerts generated by the nodes?
Each public IP address is attached to its own Zabbix host with a shared template. We are using ICMP and SNMP to confirm its availability.
Thank you!
Each branch office have 2 public IP addresses (primary and secondary in a Firewall HA cluster) that we need to monitor for outages.
Currently, we are receiving X amount of alerts when both firewalls are down, but we'd like to use event correlation to minimise the amount of events generated. I have seen lots of guides and blogs online that show how to implement this when there is only one firewall, but in our instance, we have 2. We do not want to event correlate when only 1 firewall is offline as there could be a different Root cause unrelated to the firewalls.
Is there anyway to correlate two events relating to both public IP addresses being down that will minimise the amount of alerts generated by the nodes?
Each public IP address is attached to its own Zabbix host with a shared template. We are using ICMP and SNMP to confirm its availability.
Thank you!