Documentation
Contact Support

Introduction to Signals

Suggest Edits
An overview of the Signal lifecycle

An overview of Signals

With Signals, you can manage the entire incident management lifecycle in a single platform. Signals offers a complete alerting solution with on-call schedules, escalation policies, and multi-platform notifications to help your team better respond to incidents.

Signals lifecycle

Diagram of how an inbound Event becomes an Alert on FireHydrant

Diagram of how an inbound Event becomes an Alert on FireHydrant

It starts with an event

All alerts in FireHydrant begin with an incoming event. An Event is created when your monitoring tools (called Event Sources) send a webhook to FireHydrant.

FireHydrant offers multiple out-of-box event sources that translate between proprietary webhook formats into the universal format FireHydrant understands.

You can also configure Custom Event Sources for any additional tool support FireHydrant doesn't already offer or to modify existing behavior.

Match rules or directly target

Payloads from these events are then evaluated against Alert Rules created by your teams. When an event payload matches a rule, an Alert is created and routed to a destination/target. The rule specifies which target should be notified and may include one of Escalation Policies, On-Call Schedules, or Users. This provides strategic flexibility to your teams to only subscribe to and be notified by important Events without being fatigued by too much noise.

Escalation policies can also notify webhook endpoints and round robin targets within steps, on top of schedules and users.

Alternatively, you can bypass Alert Rules and directly target an entity (e.g., a team, escalation policy, schedule, user, etc.). In this scenario, the alert will always open against the intended target.

Directly routing Events to specific targets and always creating an Alert

Directly routing Events to specific targets and always creating an Alert

Set notification preferences

Users can set their preferences for where and how they receive alerts. For instance, a user may ask to have text messages and an email sent when an Alert is fired off.

FireHydrant supports all major communications methods (SMS, Voice, Push/App, Email, Slack, WhatsApp) for receiving alerts/pages.

Respond to alerts

No matter where they receive an alert, responders can quickly take action and respond. They can:

  • Acknowledge the alert to stop any additional alerts being sent to the next step of the escalation policy.
  • Escalate the alert to send it to the next step of the escalation policy. This is helpful when a responder needs to pass off an alert based on time constraints or context.
  • Open an Incident from the alert to kick off your team’s incident management workflow. FireHydrant will pull in key data from the alert to help the team make progress on resolving the incident.
  • Dismiss the alert when they’ve determined it’s not an incident or should just be ignored. Alert will be automatically dismissed when a second Event arrives with a “Close” message.
  • Resolve the alert or formally mark it as being "handled." An alert can be resolved at any point in the lifecycle unless dismissed or expired. When an alert is connected to an incident, the alert will be automatically resolved when the incident is resolved.
  • No action. If no action is taken within the time specified in the Escalation Policy, it will automatically escalate to the next target or hand off to another team if specified.

If an alert fully exhausts the chain of targets in escalation policies and handoffs, it will enter an "expired" state. The Expired state is still open but no longer actively notifying or escalating, and it can remain in this state indefinitely. From here, users can choose to ACK, Resolve, Dismiss, or open an incident from the alert just as they can with an Open alert.

Visualizing the alert lifecycle

Visualizing the alert lifecycle

Alerts and Incident Management

A crucial part of responding to incidents is gathering context about what’s disrupting your services and applications. Alerts often contain substantial information, such as links and charts from your monitoring services. Having your alerting tool embedded in your incident management process means that your team can more quickly connect the dots between the data linked to your alerts and the root causes of your incidents.

Once a responder decides to create an incident from an alert, they transition from Signals over to the Incident Management portion of the platform. To read more about promoting alerts into incidents, see Promoting Alerts into Incidents.

Next Steps

Now that you have an overview of how Signals works on FireHydrant, it's time to dive in to setup.

  1. Configure Event Sources to send key events to FireHydrant
  2. Designate On-Call Schedules to designate who should be on-call, and when
  3. Set up Escalation Policies to set up safety nets and escalations in case any responders aren't available when paged
  4. Create Alert Rules to decide when inbound events should trigger alerts
  5. Modify Notification Preferences to decide how you would like to be notified when you are paged
  6. Learn more about Promoting Alerts into Incidents and incident management on FireHydrant

Updated 8 days ago