After reading the docs again carefully, it seems that I am missing correct conditions in the Action. The current action screen shot is as follows:



There is no condition specified which limits alerts to the host that just went down, so if I am right it sends alert to all hosts which have the template Template App Docker - digiapulssi.

I only want alerts to be generated for the host which went down and not for the rest. The hosts themselves are created using an LLD I do not know how to use a condition involving a host discovered using LLD (for which I cannot predict the host name in advance) and triggered using Trigger Prototype

Saw two tickets for issue I am referring to:

1. https://support.zabbix.com/browse/ZBXNEXT-2064
2. https://support.zabbix.com/browse/ZBX-5309

Another way to look at this is the reason why so many [spurious] problems are being generated for a single host, as seen in the screen shot below:



In the above screen shot, only container-ase-1040 was down, while others were up and running, but zabbix generated one alert for each host linked to template Template App Docker - digiapulssi. I am expecting only one alert from the trigger, but got nine.

I am not able to figure out why this happens!

If there is no dependencies between the triggers you will see all activated alarms.
https://www.zabbix.com/documentation...s/dependencies

Thanks for the answer!

There is only one trigger which is a Trigger prototype activated on discovered host created using LLD. Since there is only one trigger, I do not quite understand how can I use dependencies to activate alarm only for the host that went down.

You must design exact logic of the trigger like "host is down" then all other triggers should depend on such trigger.
Doesn't matter are we talking about set of triggers populated by LLD(s) or just fixed set of triggers.
If other triggers will be activated and they will depend on this one they will be not visible and only trigger which will be listed as active will be "host is down".

Look on the logic of such triggers in my template https://github.com/kloczek/zabbix-te...ter/OS%20Linux.
In this template in critical state many of the triggers triggers are activated but because additional dependencies only "SYS::Host is down" is visible.

Nevertheless, this is not an issue with zabbix but designed triggers logic issue which is implemented or not in exact template (doesn't matter did some triggers relays on monitoring data of exact host, group of hosts or any other metrics data).
PS. I've been not looking on the details of your template and I'm not going to help you design such logic (sorry). Helping you would require understand what exact logic you are going to implement on alarming layer.

Thanks for the reply. I think I am stuck at the design exact logic of the trigger like "host is down" phase. There seems to be some thing about zabbix alerting that I do not yet understand.

My Problem expression is {Template App Docker - digiapulssi:docker.containers[{#CONTAINERNAME}, up].last()}=0 which I expect to fire only for a single container when it goes down.

When A container goes down I can see that this value is indeed 0, and all other containers has value 1. But it is firing for all containers linked to template Template App Docker - digiapulssi. Is that the expected behavior when LLD macro like {#CONTAINERNAME} is used?

I such a case, how can a trigger be written to filter this exact host? I am not looking for a specific hand holding, just pointers to documentation.

As I've not been looking on the details of your template I can guess that your main problem is that metric which provides state of the container is outside of the container monitoring template.
If it is true you may try to move somehow this metric to the container template. As long as metric and the trigger on top of the metric will be within the template construct dependency tree of the triggers will be easier.
As long as your docker.containers[{#CONTAINERNAME}, up] metric is outside problem is how to automatically add dependencies between the triggers which are not generated by single template.

Other possible solution is to add inter host triggers dependencies on create container by the orchestration using API. This orchestration should know where docker.containers of the exact host are and that this metric should have some dependencies added to exact container triggers.

PS. IMO problem is that currently available containerization technologies are still not mature, and/or none of them are fully working (as they should) in enough wast case scenarios.
Many people are still working on new Linux containerization because existing bugs (instead fixing those bugs many people decides to develop own/new containerization introducing even more problems).
IMO it will take few years until most of those implementation will die and only one of few will remain.
Up to this moment it will be really hard to implement consist monitoring of those type of the objects .. because at the moment most of the people are focused only on some containerisation aspects like HA, orchestration, resource management but separately, and real monitoring problems are at the end of the priorities list.
Proper containerization should solve all those aspect together without putting them on kind of priorities/importance list because initial design assumptions must be compliant with all those aspects issues.

IMO most mature containerisation at the moment it is Solaris zoning (it is available already almost 14 years). However on Linux designing similar technology cannot be developed because typical Linux NIH syndrome (Not Invented Here) and because most of the containerisation software developers never have been working with Solaris zoning or on they work they've been only basing on other people description how Solaris zoning works
Look .. even used by you docker template has some logical flaws because containers[{#CONTAINERNAME},up] metric on first look is half metric and half alarm (kind of "not dog and not an otter" syndrome )

Just as an exercise I've downloaded to my zabbix your template.
I think that you are making kind of mistake.
Your template is listed in "host prototype" host template. It creates kind of loop.
Look on standard zabbix VMWare templates about how it is implemented here "host prototypes"