15. 04. 2022 Giuseppe Di Garbo NetEye

Scheduled Downtime Management

The correct configuration and scheduling of downtime is an essential element of a monitoring system for several reasons:

  • Mitigating notifications
  • Providing IT operations and Service Desk teams with timely information about when monitored systems may be subject to faults due to maintenance
  • Managing patching, reboot and maintenance procedures that are now typical of all IT systems

Downtimes can be manually configured from the NetEye interface, but they can also be scheduled to run automatically thanks to the Scheduled Downtimes interface available in the Director module.

But how should you proceed in complex environments where there are many hosts which to apply this configuration to?

To try to answer this question I would like to share the approach we took in a recent implementation at a customer.

The IT organization of this customer had defined internal policies for each group of systems, providing for different maintenance windows relating to patching activities, scheduled reboots, backups, etc.

Here are some examples:

  • S1 – 8th Day (from 01 to 06 AM)
  • S2 – The last Monday (from 01 to 06 AM)
  • S3 – 4th Monday (from 01 to 06 AM)
  • S4 – 4th Sunday (from 2 to 6 PM)
  • S5 – Every Day (from 3 AM to 4 AM)

Starting from this type of schedule, we agreed to make sure that each host monitored in NetEye had an associated policy configured via a dedicated CustomVar, and to exploit this information to “trigger” downtime.

The management process includes the following steps:

  • Hosts are regularly updated in NetEye by importing the policy or policies associated with an automation process from the corporate CMDB. These policies are written in a dedicated CustomVar of each host named update_collection.
  • The Scheduled Downtimes have been defined following the corresponding timeperiod for each policy and using the CustomVar (update_collection) as the only filter under “Assign where”.

In this way, each host that has a specific associated policy is automatically put into downtime using the aforementioned rule.

Here are some configuration examples that I hope will also be useful for others when implementing a similar approach.

As reported in the examples above, each customer policy has been associated with a unique code (S1, S2, …). A specific timeperiod has been defined for each of these policies:

  • S1: day 8 (01:00-06:00)
  • S2: monday-1 (01:00-06:00)
  • S3: tuesday-4 (01:00-06:00)
  • S4: sunday-4 (14:00-18:00)


For “S5 – Every Day (from 3 AM to 4 AM)”, here are the configured timeperiods:

Additional examples on the possible configurations of timeperiods can be found here.

Below is an example of scheduled downtime configured in Director where you can see the filter used in the “Assign where” rule:

And finally, an example of a host with active scheduled downtime:

These Solutions are Engineered by Humans

Did you find this article interesting? Does it match your skill set? Our customers often present us with problems that need customized solutions. In fact, we’re currently hiring for roles just like this and others here at Würth Phoenix.

Giuseppe Di Garbo

Giuseppe Di Garbo

Consultant at Würth Phoenix
Hi everybody. I’m Giuseppe and I was born in Milan in 1979. Since the early years of university, I was attracted by the Open Source world and operating system GNU\Linux. After graduation I had the opportunity to participate in a project of a startup for the realization of an Internet Service Provider. Before joining Würth Phoenix as SI consultant, I gained great experience as an IT consultant on projects related to business continuity and implementation of open source software compliant to ITIL processes of incident, change and service catalog management. My free time is completely dedicated to my wife and, as soon as possible, run away from Milan and his caotic time and trekking discover our beautiful mountain near Lecco for relax and lookup the (clean) sky.

Author

Giuseppe Di Garbo

Hi everybody. I’m Giuseppe and I was born in Milan in 1979. Since the early years of university, I was attracted by the Open Source world and operating system GNU\Linux. After graduation I had the opportunity to participate in a project of a startup for the realization of an Internet Service Provider. Before joining Würth Phoenix as SI consultant, I gained great experience as an IT consultant on projects related to business continuity and implementation of open source software compliant to ITIL processes of incident, change and service catalog management. My free time is completely dedicated to my wife and, as soon as possible, run away from Milan and his caotic time and trekking discover our beautiful mountain near Lecco for relax and lookup the (clean) sky.

Latest posts by Giuseppe Di Garbo

20. 12. 2024 Atlassian, NetEye, Service Management
Managing Alerts with JSM: Focus on Incident Management (Part 2)
22. 11. 2024 Atlassian, Service Management
Managing Alerts with JSM: Focus on Incident Management (Part 1)
27. 06. 2024 ITOA, NetEye, Unified Monitoring
Streamlining Icinga Director with Grafana
09. 05. 2024 NetEye
How to Customize NetEye Reports for Your Brand
22. 12. 2023 ITOA, NetEye
Hostgroup Ping Dashboard
See All

Related Content

Tags: ,

31. 01. 2025 Log Management, Log-SIEM, NetEye

NFS and Elasticsearch: A Storage Disaster for Data but a Lifesaver for Snapshots

When designing an Elasticsearch architecture, choosing the right storage is crucial. While NFS might seem like a convenient and flexible option, it comes with several pitfalls when used for hosting live Elasticsearch data (hot, warm, cold, and frozen nodes). However, Read More
29. 12. 2024 Log-SIEM, NetEye

How to Configure Kibana to Use a Proxy Server with a Certificate via the NODE_EXTRA_CA_CERTS Variable

When using Kibana in environments that require a proxy to reach external services, you might encounter issues with unrecognized SSL certificates. Specifically, if the proxy is exposed with its own certificate and acts as an SSL terminator, requests made by Read More
27. 12. 2024 APM, Development, Log-SIEM, NetEye

Elastic Universal Profiling – Profiling native code

In a previous post we went through the configuration of Elastic Universal Profiling in NetEye, seeing how we can profile applications written in programming languages that do not compile to native code (for example Python, PHP, Perl, etc.) But what Read More
23. 12. 2024 APM, Development, Log-SIEM, NetEye

Continuous Profiling with NetEye – Elastic Universal Profiling

Elastic 8.16, which comes with NetEye 4.39, made Elastic Universal Profiling generally available for self-hosted installations. This means that NetEye SIEM installations will now be able to take advantage of the continuous profiling solution by Elastic. In this blog post Read More
20. 12. 2024 Atlassian, NetEye, Service Management

Managing Alerts with JSM: Focus on Incident Management (Part 2)

In the first part of this series, we explored how Jira Service Management (JSM) helps streamline Incident Management, aligning with ITIL v4 best practices. Incident Management aims to restore normal service operation as quickly as possible after a disruption, ensuring Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive