Follow up from https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17826+. We need to be aware of firing alerts in Elastic for our clusters to be proactive rather than picking up symptoms. Since most of the team doesn't have their own Elastic accounts, slack is the best option for visibility. 1. Create a Slack Incoming Webhook: Create a new webhook and configure it to send to `#g_global_search_alerts` 2. Create a slack connector in Elastic: Go to Stack Management \> Rules \> Create Rule \> Choose the Slack action \> Create a connector and follow instructions {width=479 height=262} 3. Create Rules and choose the slack action. The existing rules and watchers should give a good idea of what kinds of rules to add. Monitor health, versions, resources, etc.