2. Me
• Been in tech for about 20 years
• Systems engineering, networking, software
development, QA, release management
• Time at Netflix: 1094 days (3y-2d)
• (Current) job at Netflix: Make things better
(Security Monkey, Python Platform, Central Alert Gateway, ... )
2
3. Metrics Humor
3
I want to start with a joke. This is may be the world’s longest joke, given that I started telling
it about a year ago.
I had just attended a presentation at Velocity 2011 where someone said “collect all the
metrics you possibly can, because you don’t know what will prove useful.”
Exposing the timeline, see that I’ve got more than a year’s information here.
And that the numbers are actually constrained within a very small range.
And that I’m showing the percent of our instances in our production environment that have
even -- that is, divisible by two -- public IP addresses.
4. Metrics Humor
3
I want to start with a joke. This is may be the world’s longest joke, given that I started telling
it about a year ago.
I had just attended a presentation at Velocity 2011 where someone said “collect all the
metrics you possibly can, because you don’t know what will prove useful.”
Exposing the timeline, see that I’ve got more than a year’s information here.
And that the numbers are actually constrained within a very small range.
And that I’m showing the percent of our instances in our production environment that have
even -- that is, divisible by two -- public IP addresses.
5. Metrics Humor
% of instances with even public IP addresses
3
I want to start with a joke. This is may be the world’s longest joke, given that I started telling
it about a year ago.
I had just attended a presentation at Velocity 2011 where someone said “collect all the
metrics you possibly can, because you don’t know what will prove useful.”
Exposing the timeline, see that I’ve got more than a year’s information here.
And that the numbers are actually constrained within a very small range.
And that I’m showing the percent of our instances in our production environment that have
even -- that is, divisible by two -- public IP addresses.
6. Technology Overview
4
Going into the cloud, went from heavy multi-purpose stacks to a highly distributed SOA
environment.
Tons of different services, dynamic binding and communication (no ESB)
7. Technology Overview
• SoA, REST, Mostly Java
4
Going into the cloud, went from heavy multi-purpose stacks to a highly distributed SOA
environment.
Tons of different services, dynamic binding and communication (no ESB)
8. Technology Overview
• SoA, REST, Mostly Java
• Simple overall architecture:
4
Going into the cloud, went from heavy multi-purpose stacks to a highly distributed SOA
environment.
Tons of different services, dynamic binding and communication (no ESB)
9. Technology Overview
• SoA, REST, Mostly Java
• Simple overall architecture:
4
Going into the cloud, went from heavy multi-purpose stacks to a highly distributed SOA
environment.
Tons of different services, dynamic binding and communication (no ESB)
10. Culture Overview
5
Freedom and Responsibility means hiring smart people and assuming they’ll make smart decisions. We want to empower them to do whatever the heck
they think they need to be doing to make the business succeed, which also means giving them all the tools THEY say they need to be successful. We bias
for innovation speed rather than safety, and we try to create highly aligned, but very loosely coupled, teams.
Distributed ops means No NOC. No staring at dashboards. CORE - Cross-functional, tools builders
Bottom line, it’s about getting out of the way of developers. We give them the tools they need, and the infrastructure pieces to make building whatever they
want to build easier, and then stand back and let them create whatever they want -- even and especially when what they want to build is, for example ...
A small moon.
11. Culture Overview
• Freedom and
Responsibility
5
Freedom and Responsibility means hiring smart people and assuming they’ll make smart decisions. We want to empower them to do whatever the heck
they think they need to be doing to make the business succeed, which also means giving them all the tools THEY say they need to be successful. We bias
for innovation speed rather than safety, and we try to create highly aligned, but very loosely coupled, teams.
Distributed ops means No NOC. No staring at dashboards. CORE - Cross-functional, tools builders
Bottom line, it’s about getting out of the way of developers. We give them the tools they need, and the infrastructure pieces to make building whatever they
want to build easier, and then stand back and let them create whatever they want -- even and especially when what they want to build is, for example ...
A small moon.
12. Culture Overview
• Freedom and
Responsibility
• Distributed
Operations
5
Freedom and Responsibility means hiring smart people and assuming they’ll make smart decisions. We want to empower them to do whatever the heck
they think they need to be doing to make the business succeed, which also means giving them all the tools THEY say they need to be successful. We bias
for innovation speed rather than safety, and we try to create highly aligned, but very loosely coupled, teams.
Distributed ops means No NOC. No staring at dashboards. CORE - Cross-functional, tools builders
Bottom line, it’s about getting out of the way of developers. We give them the tools they need, and the infrastructure pieces to make building whatever they
want to build easier, and then stand back and let them create whatever they want -- even and especially when what they want to build is, for example ...
A small moon.
13. Culture Overview
• Freedom and
Responsibility
• Distributed
Operations
• Get out of the
way of
Developers
5
Freedom and Responsibility means hiring smart people and assuming they’ll make smart decisions. We want to empower them to do whatever the heck
they think they need to be doing to make the business succeed, which also means giving them all the tools THEY say they need to be successful. We bias
for innovation speed rather than safety, and we try to create highly aligned, but very loosely coupled, teams.
Distributed ops means No NOC. No staring at dashboards. CORE - Cross-functional, tools builders
Bottom line, it’s about getting out of the way of developers. We give them the tools they need, and the infrastructure pieces to make building whatever they
want to build easier, and then stand back and let them create whatever they want -- even and especially when what they want to build is, for example ...
A small moon.
14. Culture Overview
• Freedom and
Responsibility
• Distributed
Operations
• Get out of the
way of
Developers
5
Freedom and Responsibility means hiring smart people and assuming they’ll make smart decisions. We want to empower them to do whatever the heck
they think they need to be doing to make the business succeed, which also means giving them all the tools THEY say they need to be successful. We bias
for innovation speed rather than safety, and we try to create highly aligned, but very loosely coupled, teams.
Distributed ops means No NOC. No staring at dashboards. CORE - Cross-functional, tools builders
Bottom line, it’s about getting out of the way of developers. We give them the tools they need, and the infrastructure pieces to make building whatever they
want to build easier, and then stand back and let them create whatever they want -- even and especially when what they want to build is, for example ...
A small moon.
19. Systems
• Flexible
• Scalable
• Self-Service
7
Developers own sending metrics
Developers specify what metrics to send
Smart aggregation (critical given churn potential)
20. Telemetry
Flexible, Scalable, Self-Service
8
On the fly definition of metrics
Very low barrier to entry
Java, Python, Perl (and if someone wanted to, they could -- pretty easily -- create a bash
interface)
21. Telemetry
Flexible, Scalable, Self-Service
import netflix.metrics as NM
[...]
self.nm = NM.Metrics("core_cag")
[...]
def api(self):
self.nm.counter("api")
[...]
app_label = “application_%s” % application
self.nm.counter(app_label)
[...]
8
On the fly definition of metrics
Very low barrier to entry
Java, Python, Perl (and if someone wanted to, they could -- pretty easily -- create a bash
interface)
22. Visualization
Flexible, Scalable, Self-Service
9
GUI helper for creating graphs, URL-driven fetching
Three engines: highcharts, dygraphs, RRD
flexible ‘today vs some other time’ capability
23. Alerting
Flexible, Scalable, Self-Service
10
For some patterns -- e.g. traffic -- you’ve got to have the ability to have your thresholds be
dynamic. We played with Holt-Winters, but found that it was expensive, and took too long to
calibrate. We’ve found that Double Exponential Smoothing has worked really well for us.
But once you start doing more interesting alerting configuration, it’s harder to know whether
or not you’ve set your thresholds correctly -- and the ability to map your alert configuration
to historical metric values to see when your alert WOULD have triggered makes a huge
difference in making your first attempt at rational threasholds most likely to be successful.
24. Alerting
Flexible, Scalable, Self-Service
• Static vs Dynamic
Thresholds
10
For some patterns -- e.g. traffic -- you’ve got to have the ability to have your thresholds be
dynamic. We played with Holt-Winters, but found that it was expensive, and took too long to
calibrate. We’ve found that Double Exponential Smoothing has worked really well for us.
But once you start doing more interesting alerting configuration, it’s harder to know whether
or not you’ve set your thresholds correctly -- and the ability to map your alert configuration
to historical metric values to see when your alert WOULD have triggered makes a huge
difference in making your first attempt at rational threasholds most likely to be successful.
25. Alerting
Flexible, Scalable, Self-Service
• Static vs Dynamic
Thresholds
• Historical Testing
10
For some patterns -- e.g. traffic -- you’ve got to have the ability to have your thresholds be
dynamic. We played with Holt-Winters, but found that it was expensive, and took too long to
calibrate. We’ve found that Double Exponential Smoothing has worked really well for us.
But once you start doing more interesting alerting configuration, it’s harder to know whether
or not you’ve set your thresholds correctly -- and the ability to map your alert configuration
to historical metric values to see when your alert WOULD have triggered makes a huge
difference in making your first attempt at rational threasholds most likely to be successful.
26. For Example ...
Last 3 hours’ core_tools.core_cag_api
What the ...
11
core_tools.core_cag_api is the alert volume through our Central Alerting Gateway (CAG). I
went to look for this graph for this presentation when noticed we had dropped our volume
significantly over the last 20 minutes (the relatively flat last part of this graph). So I
expanded the time range to the last few days ...
27. For Example ...
Visualization (Continued)
Last 4 days’ core_tools.core_cag_api
even more questions!
12
Which just raised more questions -- like what happened with the drop in alerts on Monday,
at 11AM and 11PM?
So let’s expand the range further back -- for the last two weeks ...
28. For Example ...
Visualization (Continued)
Last 10 days’ core_tools.core_cag_api
What caused the spike?
13
OK, that looks like basically we had a spike in alerts starting as of about 10 days ago or so,
so the drops on Monday were just going back to normal volume. But what caused the spike
earlier?
The good news is that since we send metrics not just for alerts but for alerts per application
(see the earlier code example), we could see alert volume per application...
29. For Example ...
Visualization (Continued)
Show alert volume per application
Someone had a rough few days...
14
The purple line is alerts for one of our applications -- which clearly had had a pretty rough
few days.
Now that I had the answers, let’s make sure we alert on alert volume ...
30. Don’t Like Surprises...
{
"alerts": [
{
"applyTo": "cluster",
"condition": {
"minPercent": 90.0,
"noise" : .2,
"maxPercent": 25.0,
"type": "DoubleExponential"
},
// here’s my number
overrides : {
‘api_key’ : ‘93528d3baa599b727097d73cfdbd5934’
}
"metricName": "core_cag_api",
// so call me maybe
"severity": "major"
}
],
"clusters": [ "core_tools" ]
}
15
31. I Didn’t Mention
• End-to-end testing and alerting
• External availability and performance
• Events
• Open Connect
• Jobs
16
Things I didn’t talk about:
* end-to-end testing and visibility into transactions through our system;
* making sure our site’s available to the world;
* how we’ve promoted events into first-class monitored objects in our environment;
* monitoring our new CDN, the Open Connect platform;
* the jobs we have open, at http://jobs.netflix.com
32. I Can Haz Question?
(Photo credit: My wife)
17