Ok,
Background:
We have the user groups of the application. The groups are defined as per below
- Lab: Devices have "Lab" in the name (node name)
- Storage: Devices have "SAN" in the name (node name)
- Networks: Every other managed device, no single reference word in the node name.
Each group wants to be able to receive email based alerts for their devices only, doesn't want to receive the alerts for devices they don't manage and don't want to have to do anything special when adding a new device into NPM.
If we use the advanced default alert "Alert me when an interface goes down" as an example.
Trigger Condition
...Trigger Alert when all the following Apply
Interface Status is equal to Down
I can add a condition to only alert on SAN or Storage devices by using the the contains variable for example
field Node Name contains SAN
But there is no "not contains" variable, so for our network team we cannot exclude nodes with SAN or Storage in the Node Name.
We've looked at Creating an alert suppression condition
...Suppress Alert when all of the following apply
field Node Name contains SAN
As an example, but not sure if it's working.
Is there a better or cleaner way I should be doing this? if so can someone point out how? Any assistance would be appreciated.