LV
Uploaded byLars Vogdt
ODP, PDF572 views

Monitoring at/with SUSE 2015

The document provides an overview of monitoring practices at SUSE, detailing the history and evolution of monitoring tools like Nagios and Icinga. It discusses current monitoring setups, usage of monitoring plugins, performance checks, and best practices, while emphasizing the importance of monitoring both service health and hardware availability. Additionally, it touches on HA (high availability) load-balanced monitoring strategies and offers various technical tips for effective system monitoring.

Embed presentation

Downloaded 11 times
Monitoring at/with SUSE How SUSE R&D checks network and system resources Lars Vogdt – Team Lead SUSE IT Lars.Vogdt@suse.com
2 Agenda • Official history • What are you using at SUSE? • Where are the Nagios Plugins? • SUSE R&D internal usage • Tips & Tricks • High available, load balanced monitoring • Demo (if possible)
3 The short history of Monitoring in SUSE, Part 1 • Saturday, October 23, 2001 SuSE Linux 7.3 * The first monitoring tool NetSaint version 0.0.7b6 • Monday, September 30, 2002 SuSE Linux 8.1 * Welcome Nagios in SuSE (version 1.0b4) • Saturday, April 16, 2005 SuSE Linux 9.3 * Nagios (in SuSE v 1.2 ) was project of month on SourceForge.net.
4 The short history of Monitoring in SUSE, Part 2 • Monday, June 18 2007 SUSE Linux Enterprise Server 10 SP1 * Nagios version 2.6 was with us until 2013 • Tuesday, March 24, 2009 SUSE Linux Enterprise Server 11 * Nagios version 3.0.6 as monitoring tool is stronger then never... • Wednesday , April 6, 2009 Icinga forked Nagios Icinga will be part of the next SUSE Manager release => Migrating from Nagios to Icinga 1.x is easy
5 What are you using at SUSE? • SUSE Linux Enterprise Server with High Availability Extension • Additional packages from obs://server:monitoring, obs://devel:languages:perl and obs://network:telephony • Internal packages (for no-src/legal-problematic packages – mostly license problems…) We release all “internal tools” in obs://server:monitoring as soon as possible and if there are no legal reasons (which only affects a handful of packages/scripts).
6 Where are the Nagios Plugins? • https://bugzilla.suse.com/show_bug.cgi?id=859105 and especially https://bugzilla.redhat.com/show_bug.cgi?id=1054340 have all details • 2014-07-15: nagios-plugins* got renamed to monitoring-plugins*. Since that day, we have ‒ unmaintained nagios-core-plugins* and ‒ maintained monitoring-plugins* packages in server:monitoring
SUSE R&D internal
8 SUSE R&D “specials” • Crazy customers (developers) • “No need for monitoring or statistics” – until something breaks or gets relevant for business ??? • Multiple dual-stacked networks (IPv4 + IPv6) separated via Firewalls • Production vs. Development => high amount of moving targets • Multiple hardware vendors, even NDA hardware without any further details or manuals • Luckily mostly unique Operating Systems :-) but many different services
9 The Past Services 43 2000 15 65 12 120 70 2185 Maximal Location Core System Addons Hosts Nuremberg Nagios Prague Nagios Provo Nagios Summary Latency in Nuremberg Average Host Check Latency ~7 seconds ~1.5 seconds Service Check Latency ~8 seconds ~1 second
10 Current Situation Services 430 4700 96 1150 140 1700 30 170 696 7720 Maximal Location Core System Hosts Nuremberg 1 Icinga Nuremberg 2 Nagios Prague Icinga Provo Nagios Summary Latency in Nuremberg Average Host Check Latency ~5 seconds ~1.5 seconds Service Check Latency ~3 seconds ~1 second Nuremberg Prague Provo 0 2000 4000 6000 8000 Services monitored Past Current
Some small tips
12 Why you always should define dependencies
13 What should be monitored? Administrator View Business View Hardware health Service health Service availability – host based Service availability – business based Overview about the services and incidents of single hosts Overview about the final business impact, not the service components Only important for Administrators Important for Managers and Customers
14 What can be checked? Nearly everything is possible! Minimal requirements listed below: Your script returns one of the following Exit-Codes: 3 : UnknownUnknown – something outside the normal control range (of your script?) happened 2 : Something criticalcritical happend! Help needed! 1 : well, it works currently – but be warnedwarned 0 : everything okok Some (human readable) output on STDOUT would be nice, but is not necessary for Nagios or Icinga itself. Print performance data on STDOUT, separated from normal output via '|' https://nagios-plugins.org/doc/guidelines.html.
15 Example check: check_file_exists
16 Eventhandlers If a service or host is in a defined, unwanted state, trigger external scripts to “solve” the problem automatically. (Restart apache if it crashes, send SMS if nobody acknowledges a problem, shutdown all OBS workers if Lars is not available, …)
17 Monitoring SANBoxes with MRTG For Qlogic, run the following command on your MRTG machine: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias,name --ifref=name --noreversedns --no-down --show-op-down --subdirs=sanbox-1 –output=/etc/mrtg/sanbox- 1.conf --snmp-options=:::::2 192.168.0.1 ...or for Cisco MD: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias --noreversedns --no-down --show-op-down – subdirs=sanbox-2 –output=sanbox-2.conf --snmp-options=:::::2 192.168.0.2
18 Monitoring IO on your machines On the machine your want to monitor: • Install monitoring-plugins-sar-perf • Prepare a command like (NRPE example): command[check_iostat_home]=/usr/lib/nagios/plugins/check_iost at -d root-fs_home -w 120000,120000,120000 -c 150000,150000,150000 -W 30 -C 50 • Maybe also enable sysstat (chkconfig boot.sysstat on), to have the data available on the host directly
19 MRTG graphs for network interfaces of virtual machines On the Server running the virtual machines, edit /etc/snmp/snmpd.conf : [...] rocommunity public 10.0.0.0/16 [...] On your MRTG machine, run: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias,name --ifref=name --noreversedns --no-down --show-op-down --subdirs=vmserv1 --output=vmserv1.conf --snmp- options=:::::2 10.0.0.101 ...and edit the xml definition of your virtual machine: <interface type='bridge'> [...] <target dev='vm1'/> [...] </interface> Now (re-)start snmpd and your virtual machine.
20 Monitoring of MySQL servers We are currently using two different checks: • check_mysql (monitoring-plugins-mysql package) • check_mysql_health (monitoring-plugins-mysql_health package) You need a database user with "SELECT" access for both options. Usually, this means that you create a user named "nagios" in MySQL: mysql> GRANT SELECT on nagios.* TO 'nagios'@'localhost' IDENTIFIED BY 'nag1os'; mysql> flush privileges; mysql> quit Afterward you should be able to check the database via: /usr/lib/nagios/plugins/check_mysql -H $HOST -u §USER -p $PASS or: /usr/lib/nagios/plugins/check_mysql_health --units MB -–mode threads-connected --username $USER --password $PASS --warning 40 --critical 50
21 Monitoring of PostgreSQL • check the file pg_hba.conf on the database server to contain the correct IP addresses of the monitoring cluster • create the monitor user via the createuser command as user postgres: postgres@pg1:~> createuser --pwprompt --interactive monitor Enter password for new role: Enter it again: Shall the new role be a superuser? (y/n) y Shall the new role be allowed to create databases? (y/n) n Shall the new role be allowed to create more new roles? (y/n) n • Note: the SUPERUSER privilege is needed for some special checks like "archive_ready". • restart the database • Try on the monitoring cluster: ~> ./check_postgres.pl --dbpass=$PASSWORD –dbuser=$USERNAME --action=archive_ready -H pg1 POSTGRES_ARCHIVE_READY OK: DB "postgres" (host:pg1) WAL ".ready" files found: 0 | time=0.02s files=0;10;15
22 ...and there is more... • More and more monitoring-plugins* packages come with enabled Apparmor profiles: check /var/log/audit/audit.log if something seems to be crazy • Re-enable notifications automatically via cron – to not forget it: #!/bin/bash CFG=/etc/icinga/icinga.cfg commandfile=$(grep ^command_file "$CFG" | awk -F'=' '{ print $2 }') if [ -p "$commandfile" ]; then now=`date +%s` printf "[%lu] ENABLE_NOTIFICATIONSn" $now > "$commandfile" fi • Monitor your NSCA daemon via monitoring-plugins-nsca and a dummy test (see README) • Create performance data for your monitoring: #!/bin/bash if /etc/init.d/icinga status >/dev/null 2>/dev/null ; then if [ -p /var/run/icinga/icinga.cmd ]; then su – icinga -c "/usr/lib/nagios/plugins/check_nagiostats --EXEC /usr/sbin/icingastats --passive $HOST icingastats >> /var/run/icinga/icinga.cmd" fi fi • Monitor your monitoring setup!
High available, load balanced monitoring
24 Basic overview • Corosync Pacemaker Cluster (two main machines + one VM just for Quorum) – using IPMI for STONITH • DRBD to provide storage (PNP, Logs) on both main machines • Services like MySQL (cluster), snmptrapd or NSCA run “unmanaged” on all nodes • mod_gearman for Load-Balancing/Failover of normal checks • check_mk for automatic checks and Load- Reducing • MRTG for statistics from Network and SAN (for historical reasons)
25 Load-Balanced / HA Monitoring in project pictures Livestatus snmptt snmptt
Demo time
Questions?
Thank you. Join the conversation, contribute & have a lot of fun! www.opensuse.org
29 Have a Lot of Fun, and Join Us At: www.opensuse.org
General Disclaimer This document is not to be construed as a promise by any participating organisation to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. openSUSE makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for openSUSE products remains at the sole discretion of openSUSE. Further, openSUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All openSUSE marks referenced in this presentation are trademarks or registered trademarks of SUSE LLC, in the United States and other countries. All third-party trademarks are the property of their respective owners. License This slide deck is licensed under the Creative Commons Attribution-ShareAlike 4.0 International license. It can be shared and adapted for any purpose (even commercially) as long as Attribution is given and any derivative work is distributed under the same license. Details can be found at https://creativecommons.org/licenses/by-sa/4.0/ Credits Template Richard Brown rbrown@opensuse.org Design & Inspiration openSUSE Design Team http://opensuse.github.io/branding- guidelines/

More Related Content

PDF
Kernel Recipes 2015 - Kernel dump analysis
byAnne Nicolas
 
PDF
Open stack pike-devstack-tutorial
byEueung Mulyana
 
PDF
Embedded Recipes 2018 - Finding sources of Latency In your system - Steven Ro...
byAnne Nicolas
 
PDF
Kernel Recipes 2015 - Porting Linux to a new processor architecture
byAnne Nicolas
 
DOCX
Fully Automated Nagios (FAN)
byKaustubh Padwad
 
DOCX
Vbox virtual box在oracle linux 5 - shoug 梁洪响
bymaclean liu
 
PDF
Nagios nrpe
bysharad chhetri
 
PDF
Learning Nagios
byJayant Chutke
 
Kernel Recipes 2015 - Kernel dump analysis
byAnne Nicolas
 
Open stack pike-devstack-tutorial
byEueung Mulyana
 
Embedded Recipes 2018 - Finding sources of Latency In your system - Steven Ro...
byAnne Nicolas
 
Kernel Recipes 2015 - Porting Linux to a new processor architecture
byAnne Nicolas
 
Fully Automated Nagios (FAN)
byKaustubh Padwad
 
Vbox virtual box在oracle linux 5 - shoug 梁洪响
bymaclean liu
 
Nagios nrpe
bysharad chhetri
 
Learning Nagios
byJayant Chutke
 

What's hot

PDF
Containers with systemd-nspawn
byGábor Nyers
 
PDF
Spider Setup with AWS/sandbox
byI Goo Lee
 
PDF
Your first dive into systemd!
byEtsuji Nakai
 
PDF
High performance json- postgre sql vs. mongodb
byWei Shan Ang
 
PDF
pgDay Asia 2016 - Swapping Pacemaker-Corosync for repmgr (1)
byWei Shan Ang
 
PDF
Full system roll-back and systemd in SUSE Linux Enterprise 12
byGábor Nyers
 
PDF
Kernel crashdump
byAdrien Mahieux
 
PDF
Basic onos-tutorial
byEueung Mulyana
 
DOCX
Install elasticsearch, logstash and kibana
byChanaka Lasantha
 
PDF
libreCMC : The Libre Embedded GNU/Linux Distro
byAll Things Open
 
PDF
OSMC 2009 | Windows monitoring - Going where no man has gone before... by Mic...
byNETWAYS
 
PDF
Linux con europe_2014_f
bysprdd
 
PDF
MySQL Cluster 7.3 Performance Tuning - Severalnines Slides
bySeveralnines
 
PDF
OSMC 2011 | Distributed monitoring using NSClient++ by Michael Medin
byNETWAYS
 
PDF
Rear automated testing with Bareos
byGratien D'haese
 
PDF
Erik Skytthe - Monitoring Mesos, Docker, Containers with Zabbix | ZabConf2016
byZabbix
 
PDF
Percona XtraDB 集群内部
byYUCHENG HU
 
PDF
LISA17 Container Performance Analysis
byBrendan Gregg
 
PDF
OpenStack networking-sfc flow 분석
byYongyoon Shin
 
ODP
CLUG 2010 09 - systemd - the new init system
byPaulWay
 
Containers with systemd-nspawn
byGábor Nyers
 
Spider Setup with AWS/sandbox
byI Goo Lee
 
Your first dive into systemd!
byEtsuji Nakai
 
High performance json- postgre sql vs. mongodb
byWei Shan Ang
 
pgDay Asia 2016 - Swapping Pacemaker-Corosync for repmgr (1)
byWei Shan Ang
 
Full system roll-back and systemd in SUSE Linux Enterprise 12
byGábor Nyers
 
Kernel crashdump
byAdrien Mahieux
 
Basic onos-tutorial
byEueung Mulyana
 
Install elasticsearch, logstash and kibana
byChanaka Lasantha
 
libreCMC : The Libre Embedded GNU/Linux Distro
byAll Things Open
 
OSMC 2009 | Windows monitoring - Going where no man has gone before... by Mic...
byNETWAYS
 
Linux con europe_2014_f
bysprdd
 
MySQL Cluster 7.3 Performance Tuning - Severalnines Slides
bySeveralnines
 
OSMC 2011 | Distributed monitoring using NSClient++ by Michael Medin
byNETWAYS
 
Rear automated testing with Bareos
byGratien D'haese
 
Erik Skytthe - Monitoring Mesos, Docker, Containers with Zabbix | ZabConf2016
byZabbix
 
Percona XtraDB 集群内部
byYUCHENG HU
 
LISA17 Container Performance Analysis
byBrendan Gregg
 
OpenStack networking-sfc flow 분석
byYongyoon Shin
 
CLUG 2010 09 - systemd - the new init system
byPaulWay
 

Viewers also liked

PPTX
Advantages of SUSE Linux Over Windows
byJeff Reser
 
PDF
Building IT with Precision - SUSE Linux Enterprise Real Time
byJeff Reser
 
PPT
Mw training slide
bydedoyin
 
PPT
Linux command ppt
bykalyanineve
 
PPTX
Linux commands
byMannu Khani
 
PPT
02 opti x rtn 900 v100r002 configuration guide-20100119-a
byWaheed Ali
 
PDF
Creating HTML Pages
byMike Crabb
 
PDF
Opti x rtn 910950980 hardware description wind
bynctgayaranga
 
PDF
Siae datasheet
byRaafat younis
 
PPT
02 opti x rtn 900 v100r002 system hardware-20100223-a
byWaheed Ali
 
PPT
The Huawei Node B Evolution
byAtif Mahmood
 
PPT
GSM fundamentals (Huawei)
byShopnomoy Prantor
 
PPT
Digital microwave communication principles
byMohamed Sewailam
 
PDF
3 hp minsk_june_25_2015
bytrenders
 
PPTX
Guide to open suse 13.2 by mustafa rasheed abass & abdullah t. tua'ama..super...
byMustafa AL-Timemmie
 
ODP
openSUSE Infrastructure 2015
byLars Vogdt
 
PPT
Hpc Server 2008 Ecosystem
byOleg Nazarevych
 
PDF
4 red hat_minsk_june_25_2015
bytrenders
 
PDF
Bridging openSUSE and SLE gap: the GNOME example
byFrederic Crozat
 
PDF
6 qualys minsk_june_25_2015
bytrenders
 
Advantages of SUSE Linux Over Windows
byJeff Reser
 
Building IT with Precision - SUSE Linux Enterprise Real Time
byJeff Reser
 
Mw training slide
bydedoyin
 
Linux command ppt
bykalyanineve
 
Linux commands
byMannu Khani
 
02 opti x rtn 900 v100r002 configuration guide-20100119-a
byWaheed Ali
 
Creating HTML Pages
byMike Crabb
 
Opti x rtn 910950980 hardware description wind
bynctgayaranga
 
Siae datasheet
byRaafat younis
 
02 opti x rtn 900 v100r002 system hardware-20100223-a
byWaheed Ali
 
The Huawei Node B Evolution
byAtif Mahmood
 
GSM fundamentals (Huawei)
byShopnomoy Prantor
 
Digital microwave communication principles
byMohamed Sewailam
 
3 hp minsk_june_25_2015
bytrenders
 
Guide to open suse 13.2 by mustafa rasheed abass & abdullah t. tua'ama..super...
byMustafa AL-Timemmie
 
openSUSE Infrastructure 2015
byLars Vogdt
 
Hpc Server 2008 Ecosystem
byOleg Nazarevych
 
4 red hat_minsk_june_25_2015
bytrenders
 
Bridging openSUSE and SLE gap: the GNOME example
byFrederic Crozat
 
6 qualys minsk_june_25_2015
bytrenders
 

Similar to Monitoring at/with SUSE 2015

PDF
Learning Nagios module 1
byJayant Chutke
 
PPTX
NagiOs.pptxhjkgfddssddfccgghuikjhgvccvvhjj
byrani marri
 
ODP
Nagios Conference 2014 - Eric Mislivec - Getting Started With Nagios Core
byNagios
 
PDF
Using Nagios to monitor your WO systems
byWO Community
 
PPTX
Functionality, security and performance monitoring of web assets (e.g. Joomla...
bySanjay Willie
 
PPTX
Network Monitoring with Icinga
bylearjk
 
PPT
Nagios
byguest7e7e305
 
PPTX
Why favour Icinga over Nagios - Rootconf 2015
byIcinga
 
PDF
Why favour Icinga over Nagios @ FrOSCon 2015
byIcinga
 
PDF
OSDC 2015: Bernd Erk | Why favour Icinga over Nagios
byNETWAYS
 
PDF
Why favor Icinga over Nagios @ DebConf15
byIcinga
 
ODP
Nagios Conference 2011 - Daniel Wittenberg - Scaling Nagios At A Giant Insur...
byNagios
 
PDF
Nagios 3
byrajni_kant
 
ODP
Monitoring shootout loadays
bytomdc
 
ODP
Open Source Monitoring Tools Shootout
bytomdc
 
PDF
Have you been stalking your servers?
bymorpht
 
PDF
Nagios 3
byzmoly
 
ODP
opensource Monitoring Tool , an overview
byKris Buytaert
 
PDF
Have you been stalking your servers?
byMartin Marji Cermak
 
PDF
Nagios, Getting Started.
byHitesh Bhatia
 
Learning Nagios module 1
byJayant Chutke
 
NagiOs.pptxhjkgfddssddfccgghuikjhgvccvvhjj
byrani marri
 
Nagios Conference 2014 - Eric Mislivec - Getting Started With Nagios Core
byNagios
 
Using Nagios to monitor your WO systems
byWO Community
 
Functionality, security and performance monitoring of web assets (e.g. Joomla...
bySanjay Willie
 
Network Monitoring with Icinga
bylearjk
 
Nagios
byguest7e7e305
 
Why favour Icinga over Nagios - Rootconf 2015
byIcinga
 
Why favour Icinga over Nagios @ FrOSCon 2015
byIcinga
 
OSDC 2015: Bernd Erk | Why favour Icinga over Nagios
byNETWAYS
 
Why favor Icinga over Nagios @ DebConf15
byIcinga
 
Nagios Conference 2011 - Daniel Wittenberg - Scaling Nagios At A Giant Insur...
byNagios
 
Nagios 3
byrajni_kant
 
Monitoring shootout loadays
bytomdc
 
Open Source Monitoring Tools Shootout
bytomdc
 
Have you been stalking your servers?
bymorpht
 
Nagios 3
byzmoly
 
opensource Monitoring Tool , an overview
byKris Buytaert
 
Have you been stalking your servers?
byMartin Marji Cermak
 
Nagios, Getting Started.
byHitesh Bhatia
 

Recently uploaded

PDF
OSMC 2025: Auto Discovery with Icinga by Lennart Betz.pdf
byNETWAYS
 
PDF
DevFest Baku 2025 Speaker Presentations ( Software, AI, Workshop tracks)
bynigarasadova555
 
PDF
OSMC 2025: Making the Kernel Speak Kubernetes: Unlocking eBPF’s Power for Obs...
byNETWAYS
 
PDF
OSMC 2025: It’s always DNS: Monitoring dynamic DNS environments with Checkmk ...
byNETWAYS
 
PDF
OSMC 2025: Agentic Incident Response by Birol Yildiz.pdf
byNETWAYS
 
PDF
King Khaled university .. Presentation .
by446816119
 
PDF
ACE Aarhus: Team '25 Europe Recap and latest news
byDanielEriksen5
 
PDF
OSMC 2025: Onotify: A scalable, flexible Alertmanager by Colin Douch.pdf
byNETWAYS
 
PDF
AI-CENTIVE Final Results - Final Stakeholder Meeting
bygabrielafilipovadio
 
PDF
SIHMA Scalabrini Institute for Human Mobility in Africa(SIHMA) - Annual Repor...
byScalabrini Institute for Human Mobility in Africa
 
DOCX
Capacity Building ,Personal Effectiveness and Service Excellence
byiss360degree
 
PPTX
HK_TEMPLATE12211212121112112567890976.pptx
bymimiii22022022
 
PDF
BUY Verified Binance Accounts for Trading Bitcoin and ....pdf
bymarketing
 
PDF
92.9 Best Places to Buy Verified Facebook Accounts in ....pdf
byo9hr3zizwi3t6b6tsgn
 
PPTX
Latest Cyber Security Trends and updates in 2025
byfathimarasla02
 
PPTX
Esophageal_Varices_Management_Recent_Advances.pptx
bypraveenabharadwaj45
 
PPTX
bussiness communication[1].pptx work and stress
bykshenal497
 
PPTX
Toastmasters Updated Contest Season 25 26.pptx
bypaulbartalpmp
 
PPTX
Media Pitch = The Western Standard.pptx
by27golchikborges
 
PPTX
tongue and its prosthodontic considerations
byFebaMariya2
 
OSMC 2025: Auto Discovery with Icinga by Lennart Betz.pdf
byNETWAYS
 
DevFest Baku 2025 Speaker Presentations ( Software, AI, Workshop tracks)
bynigarasadova555
 
OSMC 2025: Making the Kernel Speak Kubernetes: Unlocking eBPF’s Power for Obs...
byNETWAYS
 
OSMC 2025: It’s always DNS: Monitoring dynamic DNS environments with Checkmk ...
byNETWAYS
 
OSMC 2025: Agentic Incident Response by Birol Yildiz.pdf
byNETWAYS
 
King Khaled university .. Presentation .
by446816119
 
ACE Aarhus: Team '25 Europe Recap and latest news
byDanielEriksen5
 
OSMC 2025: Onotify: A scalable, flexible Alertmanager by Colin Douch.pdf
byNETWAYS
 
AI-CENTIVE Final Results - Final Stakeholder Meeting
bygabrielafilipovadio
 
SIHMA Scalabrini Institute for Human Mobility in Africa(SIHMA) - Annual Repor...
byScalabrini Institute for Human Mobility in Africa
 
Capacity Building ,Personal Effectiveness and Service Excellence
byiss360degree
 
HK_TEMPLATE12211212121112112567890976.pptx
bymimiii22022022
 
BUY Verified Binance Accounts for Trading Bitcoin and ....pdf
bymarketing
 
92.9 Best Places to Buy Verified Facebook Accounts in ....pdf
byo9hr3zizwi3t6b6tsgn
 
Latest Cyber Security Trends and updates in 2025
byfathimarasla02
 
Esophageal_Varices_Management_Recent_Advances.pptx
bypraveenabharadwaj45
 
bussiness communication[1].pptx work and stress
bykshenal497
 
Toastmasters Updated Contest Season 25 26.pptx
bypaulbartalpmp
 
Media Pitch = The Western Standard.pptx
by27golchikborges
 
tongue and its prosthodontic considerations
byFebaMariya2
 

Monitoring at/with SUSE 2015

  • 1.
    Monitoring at/with SUSE How SUSER&D checks network and system resources Lars Vogdt – Team Lead SUSE IT Lars.Vogdt@suse.com
  • 2.
    2 Agenda • Official history •What are you using at SUSE? • Where are the Nagios Plugins? • SUSE R&D internal usage • Tips & Tricks • High available, load balanced monitoring • Demo (if possible)
  • 3.
    3 The short historyof Monitoring in SUSE, Part 1 • Saturday, October 23, 2001 SuSE Linux 7.3 * The first monitoring tool NetSaint version 0.0.7b6 • Monday, September 30, 2002 SuSE Linux 8.1 * Welcome Nagios in SuSE (version 1.0b4) • Saturday, April 16, 2005 SuSE Linux 9.3 * Nagios (in SuSE v 1.2 ) was project of month on SourceForge.net.
  • 4.
    4 The short historyof Monitoring in SUSE, Part 2 • Monday, June 18 2007 SUSE Linux Enterprise Server 10 SP1 * Nagios version 2.6 was with us until 2013 • Tuesday, March 24, 2009 SUSE Linux Enterprise Server 11 * Nagios version 3.0.6 as monitoring tool is stronger then never... • Wednesday , April 6, 2009 Icinga forked Nagios Icinga will be part of the next SUSE Manager release => Migrating from Nagios to Icinga 1.x is easy
  • 5.
    5 What are youusing at SUSE? • SUSE Linux Enterprise Server with High Availability Extension • Additional packages from obs://server:monitoring, obs://devel:languages:perl and obs://network:telephony • Internal packages (for no-src/legal-problematic packages – mostly license problems…) We release all “internal tools” in obs://server:monitoring as soon as possible and if there are no legal reasons (which only affects a handful of packages/scripts).
  • 6.
    6 Where are theNagios Plugins? • https://bugzilla.suse.com/show_bug.cgi?id=859105 and especially https://bugzilla.redhat.com/show_bug.cgi?id=1054340 have all details • 2014-07-15: nagios-plugins* got renamed to monitoring-plugins*. Since that day, we have ‒ unmaintained nagios-core-plugins* and ‒ maintained monitoring-plugins* packages in server:monitoring
  • 7.
  • 8.
    8 SUSE R&D “specials” •Crazy customers (developers) • “No need for monitoring or statistics” – until something breaks or gets relevant for business ??? • Multiple dual-stacked networks (IPv4 + IPv6) separated via Firewalls • Production vs. Development => high amount of moving targets • Multiple hardware vendors, even NDA hardware without any further details or manuals • Luckily mostly unique Operating Systems :-) but many different services
  • 9.
    9 The Past Services 43 2000 1565 12 120 70 2185 Maximal Location Core System Addons Hosts Nuremberg Nagios Prague Nagios Provo Nagios Summary Latency in Nuremberg Average Host Check Latency ~7 seconds ~1.5 seconds Service Check Latency ~8 seconds ~1 second
  • 10.
    10 Current Situation Services 430 4700 961150 140 1700 30 170 696 7720 Maximal Location Core System Hosts Nuremberg 1 Icinga Nuremberg 2 Nagios Prague Icinga Provo Nagios Summary Latency in Nuremberg Average Host Check Latency ~5 seconds ~1.5 seconds Service Check Latency ~3 seconds ~1 second Nuremberg Prague Provo 0 2000 4000 6000 8000 Services monitored Past Current
  • 11.
  • 12.
    12 Why you alwaysshould define dependencies
  • 13.
    13 What should bemonitored? Administrator View Business View Hardware health Service health Service availability – host based Service availability – business based Overview about the services and incidents of single hosts Overview about the final business impact, not the service components Only important for Administrators Important for Managers and Customers
  • 14.
    14 What can bechecked? Nearly everything is possible! Minimal requirements listed below: Your script returns one of the following Exit-Codes: 3 : UnknownUnknown – something outside the normal control range (of your script?) happened 2 : Something criticalcritical happend! Help needed! 1 : well, it works currently – but be warnedwarned 0 : everything okok Some (human readable) output on STDOUT would be nice, but is not necessary for Nagios or Icinga itself. Print performance data on STDOUT, separated from normal output via '|' https://nagios-plugins.org/doc/guidelines.html.
  • 15.
  • 16.
    16 Eventhandlers If a serviceor host is in a defined, unwanted state, trigger external scripts to “solve” the problem automatically. (Restart apache if it crashes, send SMS if nobody acknowledges a problem, shutdown all OBS workers if Lars is not available, …)
  • 17.
    17 Monitoring SANBoxes withMRTG For Qlogic, run the following command on your MRTG machine: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias,name --ifref=name --noreversedns --no-down --show-op-down --subdirs=sanbox-1 –output=/etc/mrtg/sanbox- 1.conf --snmp-options=:::::2 192.168.0.1 ...or for Cisco MD: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias --noreversedns --no-down --show-op-down – subdirs=sanbox-2 –output=sanbox-2.conf --snmp-options=:::::2 192.168.0.2
  • 18.
    18 Monitoring IO onyour machines On the machine your want to monitor: • Install monitoring-plugins-sar-perf • Prepare a command like (NRPE example): command[check_iostat_home]=/usr/lib/nagios/plugins/check_iost at -d root-fs_home -w 120000,120000,120000 -c 150000,150000,150000 -W 30 -C 50 • Maybe also enable sysstat (chkconfig boot.sysstat on), to have the data available on the host directly
  • 19.
    19 MRTG graphs fornetwork interfaces of virtual machines On the Server running the virtual machines, edit /etc/snmp/snmpd.conf : [...] rocommunity public 10.0.0.0/16 [...] On your MRTG machine, run: /usr/bin/cfgmaker --global "WorkDir: /srv/www/htdocs/mrtg" --global "Options[_]: growright, bits, unknaszero" --ifdesc=alias,name --ifref=name --noreversedns --no-down --show-op-down --subdirs=vmserv1 --output=vmserv1.conf --snmp- options=:::::2 10.0.0.101 ...and edit the xml definition of your virtual machine: <interface type='bridge'> [...] <target dev='vm1'/> [...] </interface> Now (re-)start snmpd and your virtual machine.
  • 20.
    20 Monitoring of MySQLservers We are currently using two different checks: • check_mysql (monitoring-plugins-mysql package) • check_mysql_health (monitoring-plugins-mysql_health package) You need a database user with "SELECT" access for both options. Usually, this means that you create a user named "nagios" in MySQL: mysql> GRANT SELECT on nagios.* TO 'nagios'@'localhost' IDENTIFIED BY 'nag1os'; mysql> flush privileges; mysql> quit Afterward you should be able to check the database via: /usr/lib/nagios/plugins/check_mysql -H $HOST -u §USER -p $PASS or: /usr/lib/nagios/plugins/check_mysql_health --units MB -–mode threads-connected --username $USER --password $PASS --warning 40 --critical 50
  • 21.
    21 Monitoring of PostgreSQL •check the file pg_hba.conf on the database server to contain the correct IP addresses of the monitoring cluster • create the monitor user via the createuser command as user postgres: postgres@pg1:~> createuser --pwprompt --interactive monitor Enter password for new role: Enter it again: Shall the new role be a superuser? (y/n) y Shall the new role be allowed to create databases? (y/n) n Shall the new role be allowed to create more new roles? (y/n) n • Note: the SUPERUSER privilege is needed for some special checks like "archive_ready". • restart the database • Try on the monitoring cluster: ~> ./check_postgres.pl --dbpass=$PASSWORD –dbuser=$USERNAME --action=archive_ready -H pg1 POSTGRES_ARCHIVE_READY OK: DB "postgres" (host:pg1) WAL ".ready" files found: 0 | time=0.02s files=0;10;15
  • 22.
    22 ...and there ismore... • More and more monitoring-plugins* packages come with enabled Apparmor profiles: check /var/log/audit/audit.log if something seems to be crazy • Re-enable notifications automatically via cron – to not forget it: #!/bin/bash CFG=/etc/icinga/icinga.cfg commandfile=$(grep ^command_file "$CFG" | awk -F'=' '{ print $2 }') if [ -p "$commandfile" ]; then now=`date +%s` printf "[%lu] ENABLE_NOTIFICATIONSn" $now > "$commandfile" fi • Monitor your NSCA daemon via monitoring-plugins-nsca and a dummy test (see README) • Create performance data for your monitoring: #!/bin/bash if /etc/init.d/icinga status >/dev/null 2>/dev/null ; then if [ -p /var/run/icinga/icinga.cmd ]; then su – icinga -c "/usr/lib/nagios/plugins/check_nagiostats --EXEC /usr/sbin/icingastats --passive $HOST icingastats >> /var/run/icinga/icinga.cmd" fi fi • Monitor your monitoring setup!
  • 23.
    High available, loadbalanced monitoring
  • 24.
    24 Basic overview • CorosyncPacemaker Cluster (two main machines + one VM just for Quorum) – using IPMI for STONITH • DRBD to provide storage (PNP, Logs) on both main machines • Services like MySQL (cluster), snmptrapd or NSCA run “unmanaged” on all nodes • mod_gearman for Load-Balancing/Failover of normal checks • check_mk for automatic checks and Load- Reducing • MRTG for statistics from Network and SAN (for historical reasons)
  • 25.
    25 Load-Balanced / HAMonitoring in project pictures Livestatus snmptt snmptt
  • 26.
  • 27.
  • 28.
    Thank you. Join theconversation, contribute & have a lot of fun! www.opensuse.org
  • 29.
    29 Have a Lotof Fun, and Join Us At: www.opensuse.org
  • 30.
    General Disclaimer This documentis not to be construed as a promise by any participating organisation to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. openSUSE makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for openSUSE products remains at the sole discretion of openSUSE. Further, openSUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All openSUSE marks referenced in this presentation are trademarks or registered trademarks of SUSE LLC, in the United States and other countries. All third-party trademarks are the property of their respective owners. License This slide deck is licensed under the Creative Commons Attribution-ShareAlike 4.0 International license. It can be shared and adapted for any purpose (even commercially) as long as Attribution is given and any derivative work is distributed under the same license. Details can be found at https://creativecommons.org/licenses/by-sa/4.0/ Credits Template Richard Brown rbrown@opensuse.org Design & Inspiration openSUSE Design Team http://opensuse.github.io/branding- guidelines/

Editor's Notes

  • #14 ITIL draws your focus to the business/service side