# Security Alerts

<figure><img src="/files/N5S9eOu9Mzn4oLvzTYuw" alt=""><figcaption></figcaption></figure>

## Overview

Security Alerts allow admins to configure email alerts to be sent when [Dynamic Rules](/console-walkthrough/security/dynamic-rules.md) are triggered.

## Usage within applications and APIs

Security Alerts operate at the system level. They can be defined for individual [Server Groups](/console-walkthrough/sites/server-groups.md), or for multiple Server Groups simultaneously. When any of the specified Dynamic Rules is triggered for any of the specified Server Groups, an email alert will be sent to the designated recipient(s).

Each email alert includes:

* The Dynamic Rule that was triggered: its name, description, "Limit" (a combination of the Rule's *Number of events* and *Time frame)*, and "Type" (which corresponds to the Rule's [*Target*](/console-walkthrough/security/dynamic-rules.md#target) setting)
* A list of the violators of that Rule

{% hint style="info" %}
In the email alerts, a Dynamic Rule enforcing limits on IP addresses will not be described as *Type: IP*; rather, the email body will say *Type: remote\_addr*.&#x20;
{% endhint %}

## Administration <a href="#administration" id="administration"></a>

The main window (shown above) lists all currently defined Security Alerts.

The administration (addition/deletion/editing/versioning) of these Alerts follows the conventions described [here](/how-link11-waap-works/ui-overview-and-common-elements.md#configuration-and-administration).

## Parameters

<figure><img src="/files/pWIBbwzl34VgsWL0isof" alt=""><figcaption></figcaption></figure>

### Name

The name of this Security Alert, for use within the interface.

### Server Groups

The Server Group(s) for which this Security Alert will be active.

* Individual Security Groups can be chosen.
* `Select all` will select all currently-defined Server Groups, i.e. all sites in the planet.
* `All Server Groups` will select all currently-defined Server Groups, and will include all Server Groups that are created in the future.

### Alert recipients

One or more recipients (specified as email addresses, separated by commas) to receive alerts when any of the listed Dynamic Rules are triggered.

### Dynamic Rules

One or more Dynamic Rules which will, when violated, trigger the sending of email alerts to the specified recipients.

{% hint style="info" %}
When adding Dynamic Rules to a Security Alert, ensure that each Rule is in "[active mode](/console-walkthrough/security/dynamic-rules.md#active-mode)".  Rules that are inactive will not trigger Security Alerts.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://waap.docs.link11.com/console-walkthrough/system/security-alerts.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.