Figuring out an outage based on splunk logs

I'm trying to figure out a way where, when there are n number of failures of a particular service based on the splunk logs, I'd like to send in the response of that service going forward for all the calls made that there is an outage.

For example, is a service that is failing for more than 300 times in an hour, splunk will send me an email saying there are so many failures for this service, now based on this I'd like to modify my response to something like below response until the outage is resolved. This should be automated.

{"status":"failure","level":"","message":"There is an outage currently"}

Read more here:

Content Attribution

This content was originally published by RenuR at Recent Questions - Stack Overflow, and is syndicated here via their RSS feed. You can read the original post over there.

%d bloggers like this: