本文写的主要是prometheus各个组件的概要部署,详细各个组件实现的功能详见具体文章
设计方案:
方案概要:
采集区的各个exporter作为各个功能的采集器,每隔一段时间采集自己相应的数据,consul最为注册服务组件,将各个监控目标注册到consul上,以便于prometheus的动态发现。Prometheus拉取各个监控指标、比对规则、将数据存于tsdb(默认,本次设计采用influxdb远方存储),并将异常的指标抛给alertmanger。Alertmanager则配置相应的告警(本设计为微信告警),Grafana用于展示相关监控指标。具体各个组件的详细功能见第4步的组件详解.
sed -i ‘s/SELINUX=enforcing/SELINUX=disabled/g’ /etc/selinux/config
setenforce 0
下载go的安装包,解压到/usr/local 目录下
tar -xvf go1.11.5. -C /usr/local/
配置环境变量
cat >>/etc/profile<<EOF
export PATH=$PATH:/usr/local/go/bin
EOF
source /etc/profile
go version
若有ntp服务则忽略此步
修改时区
ln -sf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime
修改系统语言环境
echo ‘LANG=“en_US.UTF-8”’ >> /etc/profile && source /etc/profile
配置主机NTP时间同步
yum -y install ntp
systemctl enable ntpd && systemctl start ntpd
echo ‘server ntp1.aliyun’ >> /f
echo ‘server ntp2.aliyun’ >> /f
若机器无法访问外网,则在一台服务器上装ntp服务,并将另外几台服务器设置为该服务器的客户端。
安装ntp服务(下载ntpd rpm包)此处忽略
设置ntp server
vi /f
driftfile /var/lib/ntp/drift
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery
restrict 127.0.0.1
restrict -6 ::1
#允许192.168.6网段机器同步时间
restrict 192.168.6.0 mask 255.255.255.0 nomodify notrap
#远程时间服务器的地址
server 210.72.145.44 perfer #中国国家授时中心
server p
#允许上层服务器主动修改本机时间
restrict 210.72.145.44 nomodify notrap noquery
restrict p.ofg nomodify notrap noquery
#外部时间服务器不可用时,以本地时间作为时间服务
server 127.127.1.0
fudge 127.127.1.0 stratum 10
includefile /etc/ntp/crypto/pw
keys /etc/ntp/keys
4.设置NTP client
设置个crontab 每分钟执行ntpd ntp server ip即可
[root@prometheus ~]# vim /usr/lib/systemd/system/prometheus.service
[Unit] Description=Prometheus Documentation=/ After=network.target [Service]
#Type设置为notify时,服务会不断重启 Type=simple User=prometheus ExecStart=/usr/sbin/prometheus --config.file=/etc/l --storage.tsdb.path=/var/lib/prometheus --plates=/etc/prometheus/consoles --sole.libraries=/etc/prometheus/console_libraries Restart=on-failure [Install] WantedBy=multi-user.target
[root@prometheus ~]# systemctl enable prometheus
[root@prometheus ~]# systemctl start prometheus
开放端口
firewall-cmd --zone=public --add-port=9090/tcp --permanent
配置prometheus查询日志切割(有配置 query_log_file: /var/log/prometheus.log)
cat /etc/logrotate.d/prometheus
/var/log/prometheus.log {
create 0644 prometheus prometheus
daily
rotate 7
missingok
notifempty
dateext
compress
sharedscripts
postrotate
ps -ef |l |grep -v grep |awk ‘{print $2}’ |xargs kill -HUP
endscript
}
centos6
tar -zxvf node_exporter-0.18.1. -C /usr/local/
mv node_exporter-0.18.1.linux-arm64 node_exporter
cd /usr/local/node_exporter/
groupadd prometheus
useradd -g prometheus -s /sbin/nologin prometheus
chown -R prometheus:prometheus /usr/local/node_exporter/
启动脚本:
cat start-node_exporter.sh
cd /usr/local/node_exporter
nohup ./node_exporter >>/var/log/node_exporter.log &
日志切割:(如有必要)
cat /etc/logrotate.d/node_exporter
/var/log/node_exporter.log {
create 644 root root
daily
rotate 7
missingok
notifempty
dateext
sharedscripts
postrotate
ps -ef |grep node_exporter |grep -v grep |awk ‘{print $2}’ |xargs kill -HUP
endscript
}
centos7:
下载地址:
安装
tar -zxvf node_exporter-0.18.1. -C /usr/local/
mv node_exporter-0.18.1.linux-arm64 node_exporter
设置组用户
groupadd prometheus
useradd -g prometheus -s /sbin/nologin prometheus
chown -R prometheus:prometheus /usr/local/node_exporter/
设置开机自启动脚本
cat /usr/lib/systemd/system/node_exporter.service
[Unit]
Description=node_exporter
Documentation=/
After=network.target
[Service]
Type=simple
User=prometheus
ExecStart=/usr/local/node_exporter/node_exporter
Restart=on-failure
[Install]
WantedBy=multi-user.target
systemctl enable node_exporter.service
systemctl start node_exporter.service
访问日志数据:
192.168.14.160:9100/metrics
windows
安装msi安装包即可
设置iptables
firewall-cmd --zone=public --add-port=9100/tcp --permanent
tar -zxvf blackbox_exporter-0.16.0. -C /usr/local/
mv blackbox_exporter-0.16.0.linux-amd64 blackbox_exporter
mv blackbox_exporter /usr/sbin/
mkdir -p /etc/blackbox
cd /usr/local/blackbox_exporter
l /etc/blackbox/
chown prometheus:prometheus /etc/blackbox/ -R
配置自启动脚本:
vim /usr/lib/systemd/system/blackbox_exporter.service
[Unit]
Description=blackbox_exporter
After=network.target
[Service]
User=prometheus
Group=prometheus
ExecStart=/usr/sbin/blackbox_exporter --config.file=/etc/l
[Install]
WantedBy=multi-user.target
systemctl enable blackbox_exporter.service
systemctl start blackbox_exporter.service
url探测功能实现
2、定义接口模块参数(仅适用于post,get请求无需进行此步)
vim /etc/l
在modules后面添加(每个http post接口添加一个模块)
其中fjsmrh_dzjkk为自己定义的模块名
fjsmrh_dzjkk:prober: httptimeout: 25shttp:preferred_ip_protocol: "ip4"method: POSTheaders:Content-Type: application/json;charset=UTF-8body: '{"post报文"}'fail_if_body_not_matches_regexp:- "0000|success"
fail_if_body_not_matches_regexp: —过滤post请求规则,指定成功的编码
在l里面引用此模块
- job_name: "smrh_zm"metrics_path: /probeparams:module: [fjsmrh_dzjkk]static_configs:- targets: ["url"]labels:tags: "项目名称"product: "功能"relabel_configs:- source_labels: [__address__]target_label: __param_target- source_labels: [__param_target]target_label: instance- target_label: __address__replacement: 192.168.11.178:9115
get请求 直接在l上加
- job_name: "blackbox"metrics_path: /probeparams:module: [http_2xx] # Look for a HTTP 200 response.file_sd_configs: - refresh_interval: 1mfiles: - "/etc/l"relabel_configs:- source_labels: [__address__]target_label: __param_target- target_label: __address__replacement: 192.168.11.178:9115
然后在/etc/l 加上get目标
- targets: ['url']labels:instance: 'get url(自定义)'tags: '标签名(自定义)'product: '产品名(自定义)'
上传l到rule(prometheus)文件夹下(所有的rule规则会整合在一个目录中)
groups:
- name: blackbox_network_statsrules:- alert: 'url服务探测失败'expr: probe_success == 0for: 60slabels:severity: highalertinfo: push_blackbox_alertannotations:summary: "{{ $labels.instance }}探测失败"description: "url探测失败,请检查业务是否正常!!!"
也可加上证书过期规则:
groups: - name: ssl_expiry.rules rules: - alert: ssl证书即将过期 expr: probe_ssl_earliest_cert_expiry{job="blackbox"} - time() < 86400 * 15 for: 10mlabels:severity: highalertinfo: push_ssl_alertannotations:summary: "{{ $labels.instance }}证书即将过期"description: "证书即将过期,请及时处理"
启动blackbox并重新加载prometheus
systemctl start blackbox_exporter.service
systemctl restart prometheus
grafana导入json模板。实现效果:
1、创建采集用户
create user mysqld_exporter IDENTIFIED BY ‘ylz@yhkj#2020’
GRANT PROCESS, REPLICATION CLIENT, SELECT ON . TO ‘mysqld_exporter’@’%’;
2、下载采集器并配置
tar -zxvf mysqld_exporter-0.11.0. -C /usr/local
mv mysqld_exporter-0.11.0.linux-amd64 mysqld_exporter
cd mysqld_exporter
vim .myf
[client]
user=mysqld_exporte
password=ylz@yhkj#2020
设置开机自启动
vim /usr/lib/systemd/system/mysql_exporter.service
[Unit]
Description=Prometheus1
Documentation=/
After=network.target
[Service]
Type=simple
User=prometheus
ExecStart=/usr/local/mysqld_exporter/mysqld_exporter ---cnf=/usr/local/mysqld_exporter/.myf
Restart=on-failure
[Install]
WantedBy=multi-user.target
chown -R prometheus:prometheus /usr/local/mysqld_exporter/
systemctl enable mysql_exporter.service
systemctl start mysql_exporter.service
问题处理:
若启动不了服务(提示密码错误)
vim /etc/profileexport DATA_SOURCE_NAME='mysqld_exporter:ylz@yhkj#2020@tcp(127.0.0.1:3306)/'source /etc/profile
若还是启动不了 则:
解决方案:手动启动
先设置一个全局变量
export DATA_SOURCE_NAME=‘exporter:zZ#342xz666@tcp(127.0.0.1:3306)/’
source /etc/profile
然后
/usr/local/mysqld_exporter/mysqld_exporter &
也可以在赋权目录下比如/home/prometheus下直接复制.myf
创建用户
create user prometheus identified by ylz#2020;
grant connect,resource,dba to prometheus;
1、 下载oracle客户端安装包,配置安装
.html (版本必须为18以上)
下载basic sqlplus tools这三个文件(其实只要安装basic即可)
rpm -ivh oracle-instantclient18.5-basic-18.5.0.0.0-3.x86_64.rpm
rpm -ivh oracle-instantclient18.5-sqlplus-18.5.0.0.0-3.x86_64.rpm
默认路劲为 /usr/lib/oracle/版本号/client64
添加a
vim /usr/lib/oracle/18.5/a
prometheus = (DESCRIPTION = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.7.18)(PORT = 1521)) ) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = orcl) ) )
在/etc/profile
export ORACLE_HOME=/usr/lib/oracle/18.5/client64
export TNS_ADMIN= O R A C L E H O M E / n e t w o r k e x p o r t L D L I B R A R Y P A T H = ORACLE_HOME/network export LD_LIBRARY_PATH= ORACLEHOME/networkexportLDLIBRARYPATH=ORACLE_HOME/lib
export PATH= O R A C L E H O M E / b i n : ORACLE_HOME/bin: ORACLEHOME/bin:PATH
export NLS_LANG=AMERICAN_AMERICA.ZHS16GBK
export DATA_SOURCE_NAME=“onepay/onepay@192.168.44.90:1521/orcl”
source /etc/profile
验证是否可以登录
sqlplus onepay/onepay@IP/orcl source /etc/profile
验证是否可以登录
sqlplus onepay/onepay@IP/orcl
2、安装oracle_exporter
下载地址
tar -zxvf oracledb_exporter-0.2. -C /usr/local
在/etc/profile中添加
export DATA_SOURCE_NAME=“onepay/onepay@10.102.0.240:1521/orcl”
启动(可以根据实际情况设置抓取时间 建议40s以上)
./oracledb_exporter -query.timeout=50
tar -zxvf alertmanager-0.15.3.
cd alertmanager-0.15.3.linux-amd64
cp -rf alertmanager amtool /usr/sbin/
cp -l /etc/
mkdir -p /var/lib/alertmanager/data
chown prometheus:prometheus /l /var/lib/alertmanager/ -R
firewall-cmd --zone=public --add-port=9093/tcp --permanent
自启动脚本
vim /usr/lib/systemd/system/alertmanager.service
[Unit]
Description=Alertmanager
After=network.target
[Service]
Type=simple
User=prometheus
ExecStart=/usr/sbin/alertmanager --config.file=/l --storage.path=/var/lib/alertmanager/data
Restart=on-failure
[Install]
WantedBy=multi-user.target
systemctl enable alertmanager.service
systemctl start alertmanager.service
参考配置文件
[root@bogon ~]# cat /etc/l
global:resolve_timeout: 5mwechat_api_url: '/'
templates:
- '/etc/pl'
route:group_by: ['alertname']group_wait: 10sgroup_interval: 10srepeat_interval: 10mreceiver: 'wechat'
receivers:
- name: 'wechat'wechat_configs:- corp_id: 'ww7329a73bf83d1d39'to_party: '3'agent_id: '1000005'api_secret: 'lzWFlJIfbVW8QdlTvcVcFqZ-Rf0nR_gTr43oiS4AENE'send_resolved: true
inhibit_rules:
- equal: ['alertname', 'cluster', 'service']source_match:severity: 'high'target_match:severity: 'warning'
下载grafana安装包
wget .3.7-1.x86_64.rpm
yum install grafana-7.3.7-1.x86_64.rpm
rpm -ivh --nodeps grafana-7.3.7-1.x86_64.rpm
systemctl daemon-reload
systemctl enable grafana-server
systemctl start grafana-server
本文发布于:2024-02-01 15:35:14,感谢您对本站的认可!
本文链接:https://www.4u4v.net/it/170677291437623.html
版权声明:本站内容均来自互联网,仅供演示用,请勿用于商业和其他非法用途。如果侵犯了您的权益请与我们联系,我们将在24小时内删除。
| 留言与评论(共有 0 条评论) |
