prometheus-operator監控traefik-Ingress組件狀態

本文轉載自查看原文 2020-03-26 15:01 872 k8s/ traefik/ prometheus

系統環境：

Prometheus Operator版本： 0.29 Kubernetes 版本： 1.14.0

一、Traefik 配置文件設置 Prometheus

要監控 Traefik 控制器，首先要控制 Traeik 將 Metrics 數據暴露出來，這需要在配置文件中加入下面配置：

[metrics] [metrics.prometheus] entryPoint = "traefik" buckets = [0.1,0.3,1.2,5.0]

安裝 Traefik 時候已經將配置文件外掛到 Kubernetes ConfigMap 中，詳情可以參考 Kubernetes 部署 Traefik Ingress 一文。

例如，集群中將 Traefik 配置文件掛載到 Kubernetes ConfigMap 中，可以用 “kubectl etid” 命令編輯 Traefik 配置文件，加上 Prometheus 配置，這里提供本人完整配置如下：

$ kubectl edit ConfigMap traefik-config -n kube-system

apiVersion: v1
data:
  traefik.toml: |
    # traefik.toml debug = true InsecureSkipVerify = true defaultEntryPoints = ["http","https"] [entryPoints] [entryPoints.http] address = ":80" compress = true [entryPoints.https] address = ":443" compress = true [entryPoints.https.tls] [[entryPoints.https.tls.certificates]] CertFile = "/ssl/tls.crt" KeyFile = "/ssl/tls.key" [entryPoints.traefik] address = ":8080" [kubernetes] [traefikLog] format = "json" #filePath = "/data/traefik.log" [accessLog] #filePath = "/data/access.log" format = "json" [accessLog.filters] retryAttempts = true minDuration = "10ms" [accessLog.fields] defaultMode = "keep" [accessLog.fields.names] "ClientUsername" = "drop" [accessLog.fields.headers] defaultMode = "keep" [accessLog.fields.headers.names] "User-Agent" = "redact" "Authorization" = "drop" "Content-Type" = "keep" [api] entryPoint = "traefik" dashboard = true [metrics] [metrics.prometheus] entryPoint = "traefik" buckets = [0.1,0.3,1.2,5.0]

二、Traefik Service 設置標簽

Prometheus Operator 是通過 Label 匹配的，需要提前設置 Service 貼上“k8s-app: traefik-ingress”標簽

1、查看 Traefik Service

$ kubectl get service -n kube-system

kube-dns                  ClusterIP   10.10.0.10      <none>        53/UDP,53/TCP,9153/TCP    79d
kubelet                   ClusterIP   None            <none>        10250/TCP                 35d
traefik-ingress-service   ClusterIP   10.10.114.105   <none>        80/TCP,443/TCP,8080/TCP   56d

2、編輯該 Service 設置 Label

編輯 Traefik Service

$ kubectl edit service traefik-ingress-service -n kube-system

設置 Label “k8s-app: traefik-ingress”

apiVersion: v1 kind: Service metadata:  creationTimestamp: "2019-04-15T05:06:41Z"  name: traefik-ingress-service  namespace: kube-system  resourceVersion: "85575"  selfLink: /api/v1/namespaces/kube-system/services/traefik-ingress-service  uid: 4172b4df-5f3c-11e9-9287-000c29d98697  labels:  k8s-app: traefik-ingress #---增加標簽 “k8s-app: traefik-ingress” spec:  clusterIP: 10.10.114.105  ports:  - name: http  port: 80  protocol: TCP  targetPort: 80  - name: https  port: 443  protocol: TCP  targetPort: 443  - name: admin #---Prometheus metrics 數據是通過8080端口暴露的  port: 8080  protocol: TCP  targetPort: 8080  selector:  k8s-app: traefik-ingress-lb  sessionAffinity: None  type: ClusterIP status:  loadBalancer: {}

三、Prometheus Operator 配置監控規則

配置服務監控資源，用於監控 Traefik 控制器:

traefik-monitor.yaml

apiVersion: monitoring.coreos.com/v1 kind: ServiceMonitor metadata:  name: traefik-ingress  namespace: monitoring  labels:  k8s-app: traefik-ingress spec:  jobLabel: k8s-app  endpoints:  - port: admin #---設置為traefik 8080端口名稱 admin  interval: 30s  selector:  matchLabels:  k8s-app: traefik-ingress  namespaceSelector:  matchNames:  - kube-system

創建該Service Monitor

$ kubectl apply -f traefik-monitor.yaml

四、查看 Prometheus 規則

打開 Prometheus UI，查看 Prometheus 規則，可以看到 traefik 數據已經存在。

五、Grafana 引入儀表盤

打開 Grafana，在其中引入編號“4475”的儀表盤

然后就可以看到儀表盤

如果沒有數據，請提前通過 Traefik Ingress 訪問其配置的域名，刷新出一些數據，然后調整小時間范圍。

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 Prometheus-Operator監控Nginx Ingress 使用prometheus-operator監控 etcd狀態 prometheus-operator監控Kubernetes 使用 Prometheus-Operator 監控 Calico 使用 prometheus-operator 監控 Kubernetes 集群 prometheus-operator prometheus-operator 監控 k8s 外部集群 Kubernetes1.13.1安裝prometheus-operator監控 Prometheus-operator自定義監控ServiceMonitor 生產prometheus-operator 監控二進制kubernetes