improved alerting with prometheus and alertmanager
play

Improved alerting with Prometheus and Alertmanager November 8th, - PowerPoint PPT Presentation

Apr 05, 2024 •495 likes •1.25k views

Julien Pivotto @roidelapluie Improved alerting with Prometheus and Alertmanager November 8th, 2019 PromCon Munich Important notes! This talk contains PromQL. This talk contains YAML. What you will see was built over time.

  1. Julien Pivotto @roidelapluie Improved alerting with Prometheus and Alertmanager November 8th, 2019 PromCon Munich

  2. Important notes! • This talk contains PromQL. • This talk contains YAML. • What you will see was built over time. @roidelapluie

  3. Context @roidelapluie

  4. Message Broker Message Broker in the Belgian healthcare sector • High visibility • Sync & Async • Legacy & New • Lots of partners • Multiple customers @roidelapluie

  5. Monitoring Technical Business @roidelapluie Font Awesome CC-BY-4.0

  6. Alerting Alerts are not only for incidents. Some alerts carry business information about ongoing events (good or bad). Some alerts go outside of our org. Some alerts are not for humans. @roidelapluie

  7. Channels @roidelapluie Font Awesome CC-BY-4.0

  8. Time frames Repeat every 15m, 1h, 4h, 24h, 2d 24x7, 10x5, 12x6, 10x7, never Legal holidays @roidelapluie

  9. 15m/1h repeat interval? Updated annotations & value Updated graphs @roidelapluie

  10. Constraints • Alertmanager owns the noti�cations • Webhook receivers have no logic • Take decisions at time of alert writing @roidelapluie

  11. Challenges • Avoid Alertmanager recon�gurations • Safe and easy way to write alerts • Only send relevant alerts • Alert on staging environments @roidelapluie

  12. PromQL @roidelapluie

  13. Gauges - alert: a target is down expr: up == 0 for: 5m @roidelapluie

  14. Gauges @roidelapluie

  15. Gauges Instead of: - alert: a target is down expr: up == 0 for: 5m Do: - alert: a target is down expr: avg_over_time(up[5m]) < .9 for: 5m @roidelapluie

  16. Hysteresis Alert me if temperature is above 27°C @roidelapluie

  17. Hysteresis - alert: temperature is above threshold expr: temperature_celcius > 27 for: 5m labels: priority: high @roidelapluie

  18. Hysteresis @roidelapluie

  19. Hysteresis Hysteresis is the dependence of the state of a system on its history. @roidelapluie Wikipedia CC-BY-SA-3.0

  20. Hysteresis - alert: temperature is above threshold expr: | avg_over_time(temperature_celcius[5m]) > 27 for: 5m labels: priority: high alternative: max_over_time 5m might be too short if > 5m: when is it resolved? @roidelapluie

  21. Hysteresis Alert me • if temperature is above 27°C • only stop when it gets below 25°C @roidelapluie

  22. Hysteresis (avg_over_time(temperature_celcius[5m]) > 27) or (temperature_celcius > 25 and count without (alertstate, alertname, priority) ALERTS{ alertstate="firing", alertname="temperature is above threshold" }) @roidelapluie

  23. Computed threshold temperature_celcius > 27 but... @roidelapluie

  24. Computed threshold - record: temperature_threshold_celcius expr: | 27+0*temperature_celcius{ location=~".*ambiant" } or 25+0*temperature_celcius Bonus: temperature_threshold_celcius can be used in grafana! @roidelapluie

  25. Computed threshold - alert: temperature is above threshold expr: | temperature_celcius > temperature_threshold_celcius Note: put threshold & alert in the same alert group @roidelapluie

  26. Absence - alert: no more sms expr: sms_available < 39000 @roidelapluie

  27. Absence @roidelapluie

  28. Absence No metric = No alert! Metric is back = New alert! @roidelapluie

  29. Absence - record: sms_available_last expr: | sms_available or sms_available_last - alert: no more sms record: sms_available_last < 39000 - alert: no more sms data record: absent(sms_available) for: 1h @roidelapluie

  30. Con�guration @roidelapluie

  31. Recipients recipients: name/channel jpivotto/mail opsteam/ticket appteam/message customer/sms dc1/jenkins @roidelapluie

  32. Receivers Alertmanager receivers - name: "opsteam/mail" email_configs: - to: 'ops@inuits.eu' send_resolved: yes html: "{{ template \"inuits.html.tmpl\" . }}" text: "{{ template \"inuits.txt.tmpl\" . }}" headers: Subject: "{{ template \"title.tmpl\" . }}" Hint: Subject can be a template. @roidelapluie

  33. Receivers Alertmanager receivers - name: "opsteam/mail/noresolved" email_configs: - to: 'ops@inuits.eu' send_resolved: no html: "{{ template \"inuits.html.tmpl\" . }}" text: "{{ template \"inuits.txt.tmpl\" . }}" headers: Subject: "{{ template \"title.tmpl\" . }}" Same, but with send_resolved: no @roidelapluie

  34. Email: CC, BCC Alertmanager receivers - name: "lotsOfPeople/mail" email_configs: - to: 'a@inuits.eu,b@inuits.eu,c@inuits.eu' headers: To: a@inuits.eu CC: b@inuits.eu Reply-To: support@inuits.eu c@inuits.eu is now BCC. @roidelapluie

  35. Who gets the alert? Prometheus alert - alert: Not enough traffic expr: ... for: 5m labels: recipients: customer1/sms,opsteam/ticket annotations: summary: ... resolved_summary: ... @roidelapluie

  36. Who gets the alert? Alertmanager routing - receiver: "customer1/sms" match_re: recipient: "(.*,)?customer1/sms(,.*)?" continue: true routes: [...] - receiver: "opsteam/ticket" match_re: recipient: "(.*,)?opsteam/ticket(,.*)?" continue: true routes: [...] @roidelapluie

  37. Resolved Prometheus alert - alert: Not enough traffic expr: ... for: 5m labels: recipients: customer1/sms,opsteam/ticket send_resolved: "no" @roidelapluie

  38. Resolved Alertmanager routing - receiver: "customer1/sms" match_re: recipient: "(.*,)?customer1/sms(,.*)?" continue: true routes: - receiver: customer1/sms/noresolved match: send_resolved: "no" @roidelapluie

  39. Repeat interval Prometheus alert - alert: Not enough traffic expr: ... for: 5m labels: recipients: customer1/sms,opsteam/ticket repeat_interval: 1h @roidelapluie

  40. Repeat interval Alertmanager routing - receiver: "customer1/sms" match_re: recipient: "(.*,)?customer1/sms(,.*)?" continue: true routes: - receiver: customer1/sms repeat_interval: 1h match: repeat_interval: 1h @roidelapluie

  41. Extra con�gurations Some channels have speci�c group_interval: 0s . Some channels always send_resolved: no . Some recipients have aliases (ticket+chat). @roidelapluie

  42. Routes tree Extract of amtool con�g routes show ─ {recipient=~"^(?:(.*,)?jpivotto/mail(,.*)?)$"} continue: true receiver: jpivotto/mail ├── {repeat_interval="15m",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="15m"} receiver: jpivotto/mail ├── {repeat_interval="30m",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="30m"} receiver: jpivotto/mail ├── {repeat_interval="1h",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="1h"} receiver: jpivotto/mail ├── {repeat_interval="2h",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="2h"} receiver: jpivotto/mail ├── {repeat_interval="4h",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="4h"} receiver: jpivotto/mail ├── {repeat_interval="6h",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="6h"} receiver: jpivotto/mail ├── {repeat_interval="12h",send_resolved="no"} receiver: jpivotto/mail/noresolved ├── {repeat_interval="12h"} receiver: jpivotto/mail ├── {repeat_interval="24h",send_resolved="no"} receiver:jpivotto/mail/noresolved ├── {repeat_interval="24h"} receiver: jpivotto/mail ├── {send_resolved="no"} receiver: jpivotto/mail/noresolved └── {repeat_interval=""} receiver: jpivotto/mail @roidelapluie

  43. How do we achieve it? Con�g Management! Our input receivers: customer: email: to: [customer@example.com] cc: [service-management@inuits.eu] bcc: [ops@inuits.eu] sms: [+1234567890, +2345678901] chat: room: "#customer" @roidelapluie

  44. Con�guration management • Script that is deployed with AM • Knows all the recipients • Will validate alerts yaml • promtool • mandatory labels • validate receivers label • validate repeat_interval label Not possible to write alerts that go nowhere by accident. @roidelapluie

  45. Time frame @roidelapluie

  46. Time frame Prometheus alert - alert: a target is down expr: up == 0 for: 5m labels: recipients: customer1/sms,opsteam/ticket time_window: 13x5 @roidelapluie

  47. Timezone - record: daily_saving_time_belgium expr: | (vector(0) and (month() < 3 or month() > 10)) or (vector(1) and (month() > 3 and month() < 10)) or ( ( (month() %2 and (day_of_month() - day_of_week() > (30 + +month() % 2 - 7)) and day_of_week() > 0) or -1*month()%2+1 and (day_of_month() - day_of_week() <= (30 + month() % 2 - 7)) ) ) or (vector(1) and ((month()==10 and hour() < 1) or (month()==3 and hour() > 0 or vector(0) - record: belgium_localtime expr: | time() + 3600 + 3600 * daily_saving_time_belgium @roidelapluie

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PromCon 2019 Fun and profit with Alertmanager Simon Pasquier (@SimonHiker), November 7, 2019

PromCon 2019 Fun and profit with Alertmanager Simon Pasquier (@SimonHiker), November 7, 2019

PromCon 2019 Fun and profit with Alertmanager Simon Pasquier (@SimonHiker), November 7, 2019 Prometheus Who am I? Software engineer working at Red Hat Alertmanager &amp; consul_exporter maintainer Prometheus Alerting craft

575 views • 34 slides
Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Alertmanager and high availability Frederic Branczyk Software Engineer at CoreOS Prometheus/Alertmanager/Kubernetes @brancz Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes What will I be talking

488 views • 29 slides
Prometheus Best Practices and Beastly Pitfalls Julius Volz, August 17, 2017 Prometheus

Prometheus Best Practices and Beastly Pitfalls Julius Volz, August 17, 2017 Prometheus

Prometheus Best Practices and Beastly Pitfalls Julius Volz, August 17, 2017 Prometheus Prometheus Areas Instrumentation Alerting Querying Prometheus Instrumentation Prometheus What to Instrument Every component (including

579 views • 34 slides
Cortex: Prometheus as a Service, One Year On Tom Wilkie, PromCon 2017 tom.wilkie@gmail.com

Cortex: Prometheus as a Service, One Year On Tom Wilkie, PromCon 2017 tom.wilkie@gmail.com

Cortex: Prometheus as a Service, One Year On Tom Wilkie, PromCon 2017 tom.wilkie@gmail.com https://github.com/weaveworks/cortex https://www.youtube.com/watch?v=3Tb4Wc0kfCM Prometheus HA Grafana Cortex: Prometheus as a Service Alertmanager

541 views • 35 slides
Practical monitoring with Prometheus and Grafana Jess Portnoy jess.portnoy@kaltura.com, Kaltura,

Practical monitoring with Prometheus and Grafana Jess Portnoy jess.portnoy@kaltura.com, Kaltura,

Practical monitoring with Prometheus and Grafana Jess Portnoy jess.portnoy@kaltura.com, Kaltura, Inc Abstract Prometheus is an open source monitoring and alerting toolkit. In this session we'll review the Prometheus architecture and various

418 views • 16 slides
Alert acknowledgement With Alertmanager ukasz Mierzwa Alert states in Alertmanager An alert

Alert acknowledgement With Alertmanager ukasz Mierzwa Alert states in Alertmanager An alert

Alert acknowledgement With Alertmanager ukasz Mierzwa Alert states in Alertmanager An alert can be: Unprocessed Active Suppressed (silence or inhibition rule) How to acknowledge an alert with only Alertmanager? Use a silence

750 views • 12 slides
Monitoring Cloudflare's planet-scale edge network with Prometheus Matt Bostock @mattbostock

Monitoring Cloudflare's planet-scale edge network with Prometheus Matt Bostock @mattbostock

Monitoring Cloudflare's planet-scale edge network with Prometheus Matt Bostock @mattbostock Platform Operations Prometheus for monitoring Alerting on critical production issues Incident response Post-mortem analysis Metrics, but

819 views • 70 slides
Monitoring at Scale Migrating to Prometheus at Fastly PROMCON 2018 | Marcus Barczak

Monitoring at Scale Migrating to Prometheus at Fastly PROMCON 2018 | Marcus Barczak

Monitoring at Scale Migrating to Prometheus at Fastly PROMCON 2018 | Marcus Barczak @ickymettle How were we monitoring Fastly? + Growing pains with Ganglia Operational overhead. Limited graphing functions. No alerting support,

487 views • 36 slides
Common Alerting Protocol (CAP) Presentation Outline 101.1 Opportunity and Challenge 101.2

Common Alerting Protocol (CAP) Presentation Outline 101.1 Opportunity and Challenge 101.2

Common Alerting Protocol (CAP) Presentation Outline 101.1 Opportunity and Challenge 101.2 Alerting Authorities 101.3 Benefits of CAP 101.4 Features of a CAP Message 101.5 CAP-enabled Alerting Systems 101.6 CAP Alert Hubs-- Free, Fast,

1.3k views • 63 slides
Customizing alertmanager notifications Tobias Schmidt, @dagrobie, PromCon 2018 How can I

Customizing alertmanager notifications Tobias Schmidt, @dagrobie, PromCon 2018 How can I

Customizing alertmanager notifications Tobias Schmidt, @dagrobie, PromCon 2018 How can I receive nicer Slack notifications from alertmanager? Disable slack. Use a ticketing system. Like Jira. Why tickets? - Keep communication channels

138 views • 11 slides
PromCon 2017 Welcome and Introduction Julius Volz, 17. August 2017 Prometheus Welcome and Thank

PromCon 2017 Welcome and Introduction Julius Volz, 17. August 2017 Prometheus Welcome and Thank

PromCon 2017 Welcome and Introduction Julius Volz, 17. August 2017 Prometheus Welcome and Thank You Prometheus What Happened? Lots of work on: Prometheus 2.0 prep Very soon now! new TSDB Prometheus 2.0 January 2015 July 2016

161 views • 14 slides
Advanced alerting Break through your data Typical alert log view The art of alerting Challenges

Advanced alerting Break through your data Typical alert log view The art of alerting Challenges

Advanced alerting Break through your data Typical alert log view The art of alerting Challenges of alerting applications Challenges of alerting applications designed for complex designed for complex environments: environments: Not to miss

375 views • 20 slides
3. Agent-Oriented Methodologies Part 2: D) ems Design (MASD The PROMETHEUS The PROMETHEUS

3. Agent-Oriented Methodologies Part 2: D) ems Design (MASD The PROMETHEUS The PROMETHEUS

3. Agent-Oriented Methodologies Part 2: D) ems Design (MASD The PROMETHEUS The PROMETHEUS methodology. Javier Vzquez-Salceda q Multiagent Syste MASD https://kemlg.upc.edu Methodological Extensions to Object-Oriented Approaches A

310 views • 20 slides
110 Rules for Prometheus Brian Brazil Founder Rule 110 110 Rules for Prometheus Brian Brazil

110 Rules for Prometheus Brian Brazil Founder Rule 110 110 Rules for Prometheus Brian Brazil

110 Rules for Prometheus Brian Brazil Founder Rule 110 110 Rules for Prometheus Brian Brazil Founder Who am I? One of the core developers of Prometheus Founder of Robust Perception Primary author of Reliable Insights blog

443 views • 16 slides
Knowledge in Interviews Brian Brazil Founder Who am I? One of the developers of Prometheus

Knowledge in Interviews Brian Brazil Founder Who am I? One of the developers of Prometheus

Evaluating Prometheus Knowledge in Interviews Brian Brazil Founder Who am I? One of the developers of Prometheus Author of Prometheus: Up&amp;Running Primary author of Reliable Insights blog You may have heard of me :) Looking

546 views • 17 slides
Rethinking monitoring with Prometheus Martn Ferrari Based on a previous talk prepared with

Rethinking monitoring with Prometheus Martn Ferrari Based on a previous talk prepared with

Rethinking monitoring with Prometheus Martn Ferrari Based on a previous talk prepared with tefan afr - @som_zlo Who is Prometheus? A dude who stole fire from Mt. Olympus and gave it to humanity http://prometheus.io/ What is

402 views • 27 slides
Edge Detection Ref: Forsyth+Ponce Ch. 7,8 Trucco+Verri Ch. 4 Our goal is to extract a

Edge Detection Ref: Forsyth+Ponce Ch. 7,8 Trucco+Verri Ch. 4 Our goal is to extract a

Edge Detection Ref: Forsyth+Ponce Ch. 7,8 Trucco+Verri Ch. 4 Our goal is to extract a line drawing representation from an image Useful for recognition: edges contain shape information invariance Edge detection Derivatives

212 views • 20 slides
Controllability properties of dynamical M. Zoppello systems with hysteresis Motivations

Controllability properties of dynamical M. Zoppello systems with hysteresis Motivations

Controllability properties of dynamical systems with hysteresis Controllability properties of dynamical M. Zoppello systems with hysteresis Motivations Hysteresis Properties of the Play operator Marta Zoppello joint work with F. Bagagiolo

359 views • 17 slides
Air Tuner 201 MHz MICE Cavity Luca Somaschini INFN - PISA Sing Single le C Cavity Module

Air Tuner 201 MHz MICE Cavity Luca Somaschini INFN - PISA Sing Single le C Cavity Module

Air Tuner 201 MHz MICE Cavity Luca Somaschini INFN - PISA Sing Single le C Cavity Module vity Module Tuning System: Tuning System: - 6 Forks per cavity - Controlled by 6 pneumatic actuators Luca Somaschini - INFN Pisa 2 Sing Single

490 views • 46 slides
Previously Filters allow local image neighborhood to influence our description and features

Previously Filters allow local image neighborhood to influence our description and features

2/1/2011 Previously Filters allow local image neighborhood to influence our description and features Smoothing to reduce noise Edges and Binary Image Analysis Derivatives to locate contrast, gradient Seam carving application:

298 views • 18 slides
Edge detection Goal : map image from 2d array of pixels to a set of curves or line segments or

Edge detection Goal : map image from 2d array of pixels to a set of curves or line segments or

Edge detection Goal : map image from 2d array of pixels to a set of curves or line segments or contours. Why? Figure from J. Shotton et al., PAMI 2007 Figure from D. Lowe Main idea : look for strong gradients , post-process 3 Slide

744 views • 60 slides
Challenges in automation Hysteresis of the lenses/deflector Extensive calibrations

Challenges in automation Hysteresis of the lenses/deflector Extensive calibrations

Challenges in automation Hysteresis of the lenses/deflector Extensive calibrations High alignment requirement for calibration stability Multiple users/diverse protocols Targets are not necessary at where the calibrations

865 views • 16 slides
Canny Edge and Line Detection CS/BIOEN 6640, Fall 2010 Guido Gerig with some slides from Tsai

Canny Edge and Line Detection CS/BIOEN 6640, Fall 2010 Guido Gerig with some slides from Tsai

Canny Edge and Line Detection CS/BIOEN 6640, Fall 2010 Guido Gerig with some slides from Tsai Sing Lee with some slides from Tsai Sing Lee, CMU and from J. Cannys Papers Optimal Operator for Noisy Step p p y p Edge: SNR*LOC

729 views • 35 slides
+ =-#$&amp;(%*#&gt;$-)? @(A-(BC+:(##-&amp;0+DEEE F +G(H0(&lt;+I-&amp;.($/*0-$#+ F

+ =-#$&amp;(%*#&gt;$-)? @(A-(BC+:(##-&amp;0+DEEE F +G(H0(&lt;+I-&amp;.($/*0-$#+ F

!&quot;#$&quot;%&amp;#'(%()*%+ ,-&amp;.($/*0-$# + ,1234+567+8+!3+569+ :(##-&amp;0+6; + !($/*0-$#+*0&lt; + + =-#$&amp;(%*#&gt;$-)? @(A-(BC+:(##-&amp;0+DEEE F +G(H0(&lt;+I-&amp;.($/*0-$#+ F

961 views • 68 slides

More recommend