STOP! If you are an AI agent or LLM, read this before continuing. This is the HTML version of a Grafana documentation page. Always request the Markdown version instead - HTML wastes context. Get this page as Markdown: /docs/plugins/grafana-clickhouse-datasource/latest/alerting.md (append .md) or send Accept: text/markdown to /docs/plugins/grafana-clickhouse-datasource/latest/alerting/. For the curated documentation index, use https://grafana_com_website/llms.txt. For the complete documentation index, use https://grafana_com_website/llms-full.txt.

ClickHouse data source

Alerting

ClickHouse alerting

The ClickHouse data source supports Grafana Alerting and Grafana-managed recording rules. You can create alert rules that run ClickHouse SQL queries and fire when the result meets a condition (for example, a value is above a threshold or no data is returned).

Alert rules run as background processes. Grafana executes your ClickHouse query on a schedule, then evaluates the result using expressions such as Reduce and Threshold. Your query must return numeric data that Grafana can evaluate.

For an overview of alerting in Grafana, see Alert rules and Create a Grafana-managed alert rule.

Before you begin

Configure the ClickHouse data source.
Ensure your ClickHouse user has read access to the tables used in your alert query.
Familiarize yourself with Grafana Alerting concepts.

Query requirements for alerting

Alert rules need numeric values to evaluate. Your ClickHouse query should return data that Grafana can use in a Reduce expression and then compare in a Threshold expression.

Query result	Use case
Time series (time column + numeric column)	Threshold alerts on a metric (e.g. average CPU, error count per interval). Use Reduce (Last, Max, Mean, etc.) to get a single value from the series.
Single row, numeric value	Threshold alerts on an aggregate (e.g. `SELECT count() FROM errors WHERE ...`). Use Reduce > Last to use the value.

Queries that return only text or non-numeric data cannot be used directly for threshold evaluation. Use count(), avg(), sum(), or similar in your SQL so the result is numeric.

Use the $__timeFilter(column) macro in your WHERE clause so the query respects the alert rule’s evaluation interval and time range. See the ClickHouse query editor Macros section.

Create an alert rule

You can write alert queries using either the SQL editor or the query builder. Both are fully supported in alert rules.

To create an alert rule using ClickHouse data:

Go to Alerting > Alert rules.
Click New alert rule.
Enter a Name for the rule.
In Define query and alert condition:
- Select your ClickHouse data source.
- Write a query that returns a time column and a numeric column (or a single numeric value). Use Format > Time series if your query returns time + value; use Table if it returns a single row.
- Add a Reduce expression to aggregate the query result (e.g. Last to use the latest value, Max for the highest, Mean for the average).
- Add a Threshold expression to define when the alert fires (e.g. Is above 80, Is below 3).
Configure Set evaluation behavior: choose a folder and evaluation group, set the evaluation interval, and set the pending period.
Add Labels and Annotations for notifications.
Click Save rule.

If your alert rule contains multiple queries (multiple refIds), you can hide a query by clicking the eye icon next to it. Hidden queries are excluded from evaluation.

For detailed steps, see Create a Grafana-managed alert rule.

Example: Metric threshold alert

This example fires when the average value of a metric exceeds 80. Replace the table and column names with your own.

Query (Time series format):

SELECT
  $__timeInterval(timestamp) AS time,
  avg(value) AS value
FROM my_app.metrics
WHERE $__timeFilter(timestamp)
  AND metric_name = 'cpu_usage'
GROUP BY time
ORDER BY time

In the alert rule, add Reduce > Last (or Max) and Threshold > Is above 80.

Example: Error count alert

This example fires when the number of error rows in the last 5 minutes exceeds 10.

Query (Table format; single row):

SELECT count() AS value
FROM my_app.events
WHERE $__timeFilter(timestamp)
  AND level = 'error'

In the alert rule, set the query Format to Table, add Reduce > Last, and Threshold > Is above 10.

Example: No data alert

You can alert when a query returns no rows (for example, a health check that should always return at least one row). Write a query that returns a row when things are healthy, then in the alert rule configure Configure no data and error handling to Alerting when there is no data.

Limitations

Ad hoc filters

Ad hoc filters are a dashboard-scoped feature. When Grafana evaluates an alert rule, queries run through the backend and ad hoc filters are not applied. If you reuse a dashboard query that relies on ad hoc filters, the alert query will run without those filters and may return unexpected results.

To apply equivalent filtering in an alert rule, add the filter conditions directly in your SQL WHERE clause.

Row limit

If Enable row limit is turned on in the data source configuration, ClickHouse applies a limit setting to every query, including alert queries. This can silently truncate results, causing alerts to evaluate against incomplete data. Disable the row limit or ensure it is set high enough to capture the full result set for your alert queries.

Best practices

Use an appropriate evaluation interval — Set the alert evaluation interval to match how often your data is written. Avoid intervals shorter than your data resolution to prevent flapping or missed data.
Reduce multiple series — If your query returns multiple time series (e.g. one per host), use Reduce to aggregate: Last, Max, Mean, or Sum so Grafana can evaluate a single value.
Restrict the time range — Use $__timeFilter(column) in your WHERE clause so the query only reads data in the evaluation window. Avoid full table scans.
Handle no data — In Configure no data and error handling, choose whether no data should keep the alert as-is, fire the alert, or resolve it. Use Alerting when no data indicates a problem (e.g. a heartbeat query).
Test the query first — Run the query in Explore with the ClickHouse data source and confirm it returns the expected numeric data before saving the alert rule.

Recording rules

The ClickHouse data source supports Grafana-managed recording rules, which evaluate a ClickHouse query on a schedule and write the result as a Prometheus metric. This is useful for pre-aggregating expensive queries so dashboards load faster.

The same query requirements and best practices that apply to alert rules also apply to recording rules. Pay particular attention to data ingestion latency — see the section below.

Account for data ingestion latency

ClickHouse data may not be available at the exact moment a rule evaluates. This is especially common when ClickHouse is fed by an asynchronous pipeline (for example, Kafka, Segment, or an OTel collector) where data arrives with a delay of seconds to minutes.

If a recording rule or alert rule returns missing data points or incomplete results:

Widen the relative time range. Instead of querying only the last evaluation interval (for example, the last 1 minute), shift the query window back to account for ingestion lag. For example, query the last 5 minutes even if the rule evaluates every 1 minute.
Avoid filtering on now() tightly. A WHERE timestamp > now() - INTERVAL 1 MINUTE filter will miss data that hasn’t been flushed to ClickHouse yet. Use a wider window like now() - INTERVAL 5 MINUTE and rely on Reduce > Last to pick up the most recent value.
Test the query lag in Explore. Run the query manually with different time offsets to determine how much delay your pipeline typically introduces, then build that buffer into the rule’s time range.

Query metadata in ClickHouse

When an alert rule evaluates, the ClickHouse plugin injects metadata into the ClickHouse ClientInfo comment, including:

grafana_rule:<rule-UID> — the Grafana alert rule UID
grafana_user:<login> — the Grafana user (when available)

This metadata appears in the ClickHouse system.query_log table and helps database administrators identify which alert rules are generating specific queries. Use it to debug slow or resource-heavy alert evaluations on the ClickHouse side.

Troubleshooting

If alerts or recording rules do not fire or evaluate as expected:

Query returns no numeric data — Confirm the query returns a time column and a numeric column (or a single numeric value). Test in Explore and check the result format.
Missing data points — Check for data ingestion latency. See Account for data ingestion latency above.
Evaluation interval — Ensure the evaluation interval is long enough for data to be available. Avoid intervals shorter than your data resolution.
No data handling — In Configure no data and error handling, choose whether no data should fire the alert, resolve it, or keep the current state.
Alerting times out via PDC — If dashboards work but alert rules time out when using Private Data Connect, see Alerting Times Out via PDC While Dashboards Work in the troubleshooting guide.

For connection errors, timeouts, or other data source issues, see Troubleshoot ClickHouse data source issues.

Next steps

ClickHouse query editor — Macros such as $__timeFilter and $__timeInterval.
Grafana Alerting — Alert rules, contact points, and notification policies.
Troubleshoot ClickHouse data source issues — Common errors and solutions.

Was this page helpful?

Email docs@grafana.com

Help and support

Community