Public | Automated Build

Last pushed: 2 years ago
Short Description
Easy & Flexible Alerting With ElasticSearch https://elastalert.readthedocs.org
Full Description

Elastalert Docker Image

Docker image with Elastalert on Alpine Linux.

Requires a link to a Docker container running Elasticsearch using the "elasticsearch_host" alias.
Assumes the use of port 9200 when communicating with Elasticsearch.<br/>
In order for the time of the container to be synchronized (ntpd), it must be run with the SYS_TIME capability.
In addition you may want to add the SYS_NICE capability, in order for ntpd to be able to modify its priority.

Volumes

/opt/logs - Elastalert and Supervisord logs will be written to this directory.<br/>
/opt/config - Elastalert (elastalert_config.yaml) and Supervisord (elastalert_supervisord.conf) configuration files.<br/>
/opt/rules - Contains Elastalert rules.<br/>

Environment

SET_CONTAINER_TIMEZONE - Set to "true" (without quotes) to set the tiemzone when starting a container. Default is false.<br/>
CONTAINER_TIMEZONE - Timezone to use in container. Default is Europe/Stockholm.<br/>

Docker Pull Command
Owner
kiawin
Source Repository