Configure EdgeOne event alarms via TCOP
Download
포커스 모드
폰트 크기
Overview
EdgeOne collaborates with TCOP to provide flexible alarm solutions for events such as DDoS attacks and origin IP address changes. Users can leverage TCOP's alarm capabilities to set detailed alarm triggering rules and receive alerts through multiple notification channels, including phone calls, SMS, emails, WeChat, and VIP customer support groups, thus effectively improving response speed and handling efficiency for incidents.
Note:
Applicable Scenarios
This document applies to all users who have onboarded EdgeOne and need to configure event alarms.
Default Alarm Policy
After you onboard domain names/L4 proxy instances to EdgeOne, once a security event occurs, TCOP will push by default alarm messages to the email and SMS set for your Tencent Cloud primary account. You can view the Cloud Service Event Default Alarm rules in TCOP - Event Bus - Event Rules. This default alarm policy requires no additional configuration by users and takes effect by default.
Note:
The event scope for the default alarm policy to take effect includes DDoS attacks, blocking caused by DDoS attacks, and sudden increases in HTTP requests.
Configuration Guide
TCOP supports the following two methods for configuring event alarms:
1. Configure via Event Bus > Event Rules;
2. Configure via Alarm Management > Alarm Configuration > Custom Alarm Policy.
Method One: Configure via Event Bus
Step 1: Configure the event pattern
1. Log in to the TCOP Console, in the left navigation, choose Event Bus > Event Rules, in the top-left corner, select Guangzhou for region, select
default for event set, and click New.2. Fill in the relevant information as prompted on the page:
2.1 In the Event Matching card, select the cloud service type as Edge Security Acceleration Platform, and choose the event type for which you want to configure alarms.
2.2 For other related configurations, see Creating Event Rules.
3. Click Next.
Step 2: Configure event targets
1. According to the prompts on the page, fill in the information about the event-triggered targets. The event bus currently supports event targets including: Cloud Function (SCF), Log Service (CLS), Message Push, Message Queue (Ckafka), and Elasticsearch. For detailed configuration documentation, refer to Event Targets.
2. Click Complete to save the configuration.
Method 2: Configure via alarm management
Step 1: Configure Alarms
1. Log in to the TCOP console, in the left navigation, choose Alarm Management > Alarm Configuration, click New Policy, then select Custom Alarm Policy.
2. The detailed configuration items of the alarm policy are as follows:
2.1 Select Cloud Product Monitoring for the monitoring type.
2.2 Select EdgeOne for the policy type.
2.3 Select Event Alarm for the trigger condition. In the dropdown, choose the event type for which you want to configure alarms.
2.4 For other related configurations, see New Alarm Policy.
3. Click Next: Configure Alarm Notifications.
Step 2: Configuring an Alarm Notification
1. Confirm whether the system preset notification template meets expectations. If you need to customize the notification template, refer to Create Notification Template.
2. After selecting the desired notification template, click Complete to save the configuration.
References
피드백