Set up security alerts
The F5 Distributed Cloud generates alerts from all its services including NGINX One. You can configure rules to send those alerts to a receiver of your choice. These instructions walk you through how to configure an email notification when we see new CVEs or detect security issues with your NGiNX instances.
This page describes basic steps to set up an email alert. For authoritative documentation, see Alerts - Email & SMS.
To configure security-related alerts, follow these steps:
- Navigate to the F5 Distributed Cloud Console at https://INSERT_YOUR_TENANT_NAME.console.ves.volterra.io.
- Find Audit Logs & Alerts > Alerts Management
- Select Add Alert Receiver
- Configure the Alert Receivers
- Enter the name of your choice
- (Optional) Specify a label and description
- Under Receiver, select Email and enter your email address.
- Select Save and Exit.
- Your Email receiver should now appear on the list of Alert Receivers.
- Under the Actions column, select Verify Email.
- Select Send email to confirm
- You should receive a verification code in the email provided. Copy that code.
- Under the Actions column, select Enter verification code.
- Paste the code and select Verify receiver.
Next, configure the policy that identifies when you’ll get an alert.
- Navigate to Alerts Management > Alert Policiei.
- Select Add Alert Policy.
- Enter the name of your choice
- (Optional) Specify a label and description
- Under Alert Reciever Configuration > Alert Receivers, select the Alert Receiver you just created
- Under Policy Rules select Configure.
- Select Add Item.
- Under Select Alerts (TBD)
- Set the Action as Send and select Apply
Now set a second alert related to Common Vulnerabilities and Exposures (CVEs).
- Select Add Item.
- Under Select Alerts {adding additional Alert type for CVE).
- Set the Action as Send and select Apply.
- Select Save and Exit.