部署kube-prometheus监控套件

中文文档
This repository collects Kubernetes manifests, Grafana dashboards, and Prometheus rules combined with documentation and scripts to provide easy to operate end-to-end Kubernetes cluster monitoring with Prometheus using the Prometheus Operator.

git clone https://github.com/prometheus-operator/kube-prometheus.git
kubectl create -f manifests/setup
kubectl create -f manifests/
until kubectl get servicemonitors --all-namespaces ; do date; sleep 1; echo ""; done

调试

Prometheus$ kubectl --namespace monitoring port-forward svc/prometheus-k8s 9090
Then access via http://localhost:9090Grafana$ kubectl --namespace monitoring port-forward svc/grafana 3000
Then access via http://localhost:3000 and use the default grafana user:password of admin:admin.Alert Manager$ kubectl --namespace monitoring port-forward svc/alertmanager-main 9093
Then access via http://localhost:9093

manifests下用户可以自定义CRD等资源配置

https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md

增加prometheus监控K8S集群权限

Failed to watch *v1.Pod: failed to list *v1.Pod: pods is forbidden: User \"system:serviceaccount:monitoring:prometheus-k8s\" cannot list resource \"pods\" in API group \"\" in the namespace \"loki\""

cat prometheus-clusterRole.yaml

apiVersion: rbac.authorization.k8s.io/v1beta1
kind: ClusterRole
metadata:labels:app.kubernetes.io/component: prometheusapp.kubernetes.io/name: prometheusapp.kubernetes.io/part-of: kube-prometheusapp.kubernetes.io/version: 2.26.0name: prometheus-k8s
rules:
- apiGroups:- ""resources:- nodes/metrics- pods- services- endpointsverbs:- list- get- watch
- nonResourceURLs:- /metricsverbs:- get

监控springboot 2.x项目

grafana官方手册

监控java程序jmx_exporter

https://github.com/prometheus/jmx_exporter

将jmx_exporter放到程序可以找到的目录

ls /usr/monitor/jmx_export/
jmx_exporter_config.yaml
jmx_prometheus_javaagent-0.14.0.jar

下面配置在grafana对应的模版里面可以找到：https://grafana.com/grafana/dashboards/8563

cat jmx_exporter_config.yaml

---
lowercaseOutputLabelNames: true
lowercaseOutputName: true
whitelistObjectNames: ["java.lang:type=OperatingSystem"]
blacklistObjectNames: []
rules:- pattern: 'java.lang<type=OperatingSystem><>(committed_virtual_memory|free_physical_memory|free_swap_space|total_physical_memory|total_swap_space)_size:'name: os_$1_bytestype: GAUGEattrNameSnakeCase: true- pattern: 'java.lang<type=OperatingSystem><>((?!process_cpu_time)\w+):'name: os_$1type: GAUGEattrNameSnakeCase: true

程序启动添加参数

-javaagent:/usr/monitor/jmx_export/jmx_prometheus_javaagent-0.14.0.jar=12345:/usr/monitor/jmx_export/jmx_exporter_config.yaml java -javaagent:/usr/monitor/jmx_export/jmx_prometheus_javaagent-0.14.0.jar=12345:/usr/monitor/jmx_export/jmx_exporter_config.yaml  -jar app.jar

这时程序会额外启动12345这个http端口

使用PodMonitor自动发现pod

使用场景：对于没有使用service的应用可以使用PodMonitor

deployment 配置

apiVersion: apps/v1
kind: Deployment
metadata:labels:k8s-app: mq-test # 关键配置，PodMonitor 关联............imagePullPolicy: IfNotPresentname: mq-testports:- containerPort: 12345name: prometheus # 关键配置，PodMonitor 关联找到该名字protocol: TCPresources:

PodMonitor 配置关联deployment，apply下列文件

apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:name: default-mqtest # 最终显示在promtheus中的job名称namespace: default
spec:namespaceSelector:matchNames:- defaultpodMetricsEndpoints:- interval: 15spath: /metricstargetPort: 12345# port: prometheus # 也可以使用与pod中的port 12345对应的名字,个人习惯使用targetPortselector:matchLabels:k8s-app: mq-test # 关键配置，pod的labels

使用ServiceMonitor自动发现service

使用场景：使用service的应用（常用）
通过使用ServiceMonitor会自动将service相关联的pod自动加入到监控之中，并从apiserver获取最新的pod列表实时更新

service配置

apiVersion: v1
kind: Service
metadata:labels:k8s-app: mq-testname: mq-testnamespace: default
spec:ports:- name: 8080-8080-tcpport: 8080protocol: TCPtargetPort: 8080- name: 12345-12345-tcpport: 12345protocol: TCPtargetPort: 12345selector:k8s-app: mq-test

ServiceMonitor 配置关联service，并apply

apiVersion: monitoring.coreos.com/v1
kind: ServiceMonitor
metadata:name: mq-testnamespace: defaultlabels:k8s-app: mq-test # 关键配置
spec:#jobLabel: metricsendpoints:- interval: 15sport: 12345-12345-tcp # 关键配置namespaceSelector: # 支持监听多个namespacematchNames:- defaultselector:matchLabels:k8s-app: mq-test

导入grafana模版：https://grafana.com/grafana/dashboards/8563

为Prometheus serviceAccount 添加对应namespace的权限

--- # 在对应的ns中创建角色
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:name: prometheus-k8snamespace: my-namespace
rules:
- apiGroups:- ""resources:- services- endpoints- podsverbs:- get- list- watch
--- # 绑定角色 prometheus-k8s 角色到 Role
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:name: prometheus-k8snamespace: my-namespace
roleRef:apiGroup: rbac.authorization.k8s.iokind: Rolename: prometheus-k8s
subjects:
- kind: ServiceAccountname: prometheus-k8s # Prometheus 容器使用的 serviceAccount，kube-prometheus默认使用prometheus-k8s这个用户namespace: monitoring

添加告警规则rules

apiVersion: monitoring.coreos.com/v1
kind: PrometheusRule
metadata:labels:prometheus: k8s # 必须有role: alert-rules # 必须有name: jvm-metrics-rulesnamespace: monitoring
spec:groups:- name: jvm-metrics-rulesrules:# 在5分钟里，GC花费时间超过10%- alert: GcTimeTooMuchexpr: increase(jvm_gc_collection_seconds_sum[5m]) > 10for: 5mlabels:severity: redannotations:summary: "{{ $labels.app }} GC时间占比超过10%"message: "ns:{{ $labels.namespace }} pod:{{ $labels.pod }} GC时间占比超过10%，当前值({{ $value }}%)"# GC次数太多- alert: GcCountTooMuchexpr: increase(jvm_gc_collection_seconds_count[1m]) > 30for: 1mlabels:severity: redannotations:summary: "{{ $labels.app }} 1分钟GC次数>30次"message: "ns:{{ $labels.namespace }} pod:{{ $labels.pod }} 1分钟GC次数>30次，当前值({{ $value }})"# FGC次数太多- alert: FgcCountTooMuchexpr: increase(jvm_gc_collection_seconds_count{gc="ConcurrentMarkSweep"}[1h]) > 3for: 1mlabels:severity: redannotations:summary: "{{ $labels.app }} 1小时的FGC次数>3次"message: "ns:{{ $labels.namespace }} pod:{{ $labels.pod }} 1小时的FGC次数>3次，当前值({{ $value }})"# 非堆内存使用超过80%- alert: NonheapUsageTooMuchexpr: jvm_memory_bytes_used{job="mq-test", area="nonheap"} / jvm_memory_bytes_max * 100 > 80for: 1mlabels:severity: redannotations:summary: "{{ $labels.app }} 非堆内存使用>80%"message: "ns:{{ $labels.namespace }} pod:{{ $labels.pod }} 非堆内存使用率>80%，当前值({{ $value }}%)"# 内存使用预警- alert: HeighMemUsageexpr: process_resident_memory_bytes{job="mq-test"} / os_total_physical_memory_bytes * 100 > 85for: 1mlabels:severity: redannotations:summary: "{{ $labels.app }} rss内存使用率大于85%"message: "ns:{{ $labels.namespace }} pod:{{ $labels.pod }} rss内存使用率大于85%，当前值({{ $value }}%)"

配置告警接收者们

参考：https://zhuanlan.zhihu.com/p/74932366

cat test-alert.yaml

global:resolve_timeout: 5m
route:group_by: ['job', 'alertname', 'pod']group_interval: 2mreceiver: my-alert-receiverroutes:- match: job: jmx-metricsreceiver: my-alert-receiverrepeat_interval: 3h
receivers:
- name: my-alert-receiverwebhook_configs:- url: http://6e2db971bfba.ngrok.io/dingtalk/webhook1/sendmax_alerts: 1send_resolved: true

cat test-alert.yaml |base64
将经过base64转换的secret贴到这里，稍后刷新alertmanager页面即可看到配置变更了
kubectl edit -n monitoring Secret alertmanager-main

修改或删除默认告警规则

manifests/prometheus-prometheusRule.yaml

集成钉钉告警插件

https://github.com/timonwong/prometheus-webhook-dingtalk/releases/

新增/添加prometheus server配置（静态配置job_name）

官网文档：https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md#prometheusspec

prometheus的配置默认是不能修改的，目前可以通过新增prometheus-additional.yaml来添加新增配置，如下：

cat prometheus-additional.yaml

- job_name: rocketmq-exporterhonor_timestamps: truemetrics_path: /metricsscheme: httpstatic_configs:- targets:- 10.250.62.4:5557

创建secret对象
kubectl create secret generic additional-configs --from-file=prometheus-additional.yaml -n monitoring

更新的话删除，再创建
kubectl delete secret additional-configs -n monitoring

在manifests/prometheus-prometheus.yaml 配置文件追加 additionalScrapeConfigs 字段和对应name和key，并apply该文件配置，会在target中看到该配置啦

  serviceAccountName: prometheus-k8sserviceMonitorNamespaceSelector: {}serviceMonitorSelector: {}version: 2.25.0additionalScrapeConfigs:name: additional-configskey: prometheus-additional.yaml

若有问题查看日志
kubectl logs -f prometheus-k8s-0 prometheus -n monitoring

配置blackbox_exporter

使用kube-prometheus部署套件会自动部署blackbox_exporter服务，特别注意：开启的端口是19115而不是9115，可以到pod内ps查看
官网支持的模块models示例ping、http、dns等
官网blackbox_exporter配置参考

models配置

configmap：blackbox-exporter-configuration
confix.yml

"modules":"http_2xx": # 配置get请求检测"http":"preferred_ip_protocol": "ip4""prober": "http""http_post_2xx": # 配置post请求检测"http":"method": "POST""preferred_ip_protocol": "ip4""prober": "http""irc_banner":"prober": "tcp""tcp":"preferred_ip_protocol": "ip4""query_response":- "send": "NICK prober"- "send": "USER prober prober prober :prober"- "expect": "PING :([^ ]+)""send": "PONG ${1}"- "expect": "^:[^ ]+ 001""pop3s_banner":"prober": "tcp""tcp":"preferred_ip_protocol": "ip4""query_response":- "expect": "^+OK""tls": true"tls_config":"insecure_skip_verify": false"ssh_banner":"prober": "tcp""tcp":"preferred_ip_protocol": "ip4""query_response":- "expect": "^SSH-2.0-""tcp_connect": # 配置tcp端口检测"prober": "tcp""tcp":"preferred_ip_protocol": "ip4""icmp": # 配置ping检测"prober": "icmp""icmp":"preferred_ip_protocol": "ip4"

prometheus静态配置job

secret：additional-configs # 该配置是prometheus静态配置，请参考上文如何创建
prometheus-additional.yaml

- job_name: 'blackbox_http_2xx'scrape_interval: 5smetrics_path: /probeparams:module: [http_2xx]  # Look for a HTTP 200 response. 与models关联static_configs:- targets:- https://www.baidu.com/ # 监控的urllabels:instance: web_statusgroup: 'web'relabel_configs:- source_labels: [__address__]target_label: __param_target- source_labels: [__param_target]target_label: instance- target_label: __address__replacement: 192.168.63.76:19115 # blackbox-exporter 地址和端口
- job_name: 'blackbox_ping'scrape_interval: 5smetrics_path: /probeparams:module: [icmp] static_configs:- targets:- 127.0.0.1labels:instance: icmp_statusgroup: 'icmp'relabel_configs:- source_labels: [__address__]target_label: __param_target- target_label: __address__replacement: 192.168.63.76:19115
- job_name: 'blackbox_tcp_connect'scrape_interval: 5smetrics_path: /probeparams:module: [tcp_connect]static_configs:- targets:- 127.0.0.1:9090labels:instance: tcp_statusgroup: 'tcp'relabel_configs:- source_labels: [__address__]target_label: __param_target- source_labels: [__param_target]target_label: instance- target_label: __address__replacement: 192.168.63.76:19115

使用curl接口测试

大同小异，更换module和对应的target字段即可

curl http://192.168.32.44:19115/probe?target=127.0.0.1:9090&module=blackbox_
tcp_connect
curl http://192.168.32.44:19115/probe?target=www.baidu.com&module=http_2xx&d
ebug=true

出现如下数据说明数据正常

/ # # HELP probe_dns_lookup_time_seconds Returns the time taken for probe dns lookup in seconds
# TYPE probe_dns_lookup_time_seconds gauge
probe_dns_lookup_time_seconds 0.105269463
# HELP probe_duration_seconds Returns how long the probe took to complete in seconds
# TYPE probe_duration_seconds gauge
probe_duration_seconds 0.200167873
# HELP probe_failed_due_to_regex Indicates if probe failed due to regex
# TYPE probe_failed_due_to_regex gauge
probe_failed_due_to_regex 0
# HELP probe_http_content_length Length of http content response
# TYPE probe_http_content_length gauge
probe_http_content_length -1
# HELP probe_http_duration_seconds Duration of http request by phase, summed over all redirects
# TYPE probe_http_duration_seconds gauge
probe_http_duration_seconds{phase="connect"} 0.006833871 #连接时间
probe_http_duration_seconds{phase="processing"} 0.008490896 #处理请求的时间
probe_http_duration_seconds{phase="resolve"} 0.105269463 #响应时间
probe_http_duration_seconds{phase="tls"} 0 #校验证书的时间
probe_http_duration_seconds{phase="transfer"} 0.079338462
# HELP probe_http_redirects The number of redirects
# TYPE probe_http_redirects gauge
probe_http_redirects 0 #重定向的次数
# HELP probe_http_ssl Indicates if SSL was used for the final redirect
# TYPE probe_http_ssl gauge
probe_http_ssl 0
# HELP probe_http_status_code Response HTTP status code
# TYPE probe_http_status_code gauge
probe_http_status_code 200 #返回的状态码
# HELP probe_http_uncompressed_body_length Length of uncompressed response body
# TYPE probe_http_uncompressed_body_length gauge
probe_http_uncompressed_body_length 298537
# HELP probe_http_version Returns the version of HTTP of the probe response
# TYPE probe_http_version gauge
probe_http_version 1.1
# HELP probe_ip_addr_hash Specifies the hash of IP address. It's useful to detect if the IP address changes.
# TYPE probe_ip_addr_hash gauge
probe_ip_addr_hash 2.768965475e+09
# HELP probe_ip_protocol Specifies whether probe ip protocol is IP4 or IP6
# TYPE probe_ip_protocol gauge
probe_ip_protocol 4
# HELP probe_success Displays whether or not the probe was a success
# TYPE probe_success gauge
probe_success 1 # 1代表成功

grafana参考

12275、9965
http状态：13230

告警配置

expr: probe_ssl_earliest_cert_expiry - time() < 86400 * 30  # 域名过期30天检测
expr: probe_http_status_code{job="blackbox_http_2xx"} >=400 and probe_success{job="blackbox_http_2xx"}==0  # 实现状态码>400且状态为0（失败）的告警。
expr: sum(probe_http_duration_seconds) by (instance) > 3  # 接口总耗时大于 3 秒的告警。

新建个PrometheusRule文件，apply之后在UI查看

apiVersion: monitoring.coreos.com/v1
kind: PrometheusRule
metadata:labels:prometheus: k8srole: alert-rulesname: blackbox-metrics-alertnamespace: monitoring
spec:groups:- name: blackbox-metrics-alertrules:- alert: curlHttpStatusexpr: probe_http_status_code{job="blackbox_http_2xx"} >=400 and probe_success{job="blackbox_http_2xx"}==0for: 1mlabels:severity: redannotations:summary: 'web接口访问异常状态码 > 400'description: '{{$labels.instance}} 不可访问,请及时查看,当前状态码为{{$value}}'- name: blackbox-ssl_expiryrules:- alert: Ssl Cert Will Expire in 30 daysexpr: probe_ssl_earliest_cert_expiry - time() < 86400 * 30for: 5mlabels:severity: warningannotations:summary: "域名证书即将过期 (instance {{ $labels.instance }})"description: "域名证书 30 天后过期 \n  VALUE = {{ $value }}\n  LABELS: {{ $labels }}"

prometheus-adapter实现自定义指标HPA

在腾讯云上测试失败，腾讯云有一套自己的custom.metrics.k8s.io/v1beta1,需要删除才能创建，会导致腾讯云控制台hpa无法使用，参考在 TKE 上使用自定义指标进行弹性伸缩

K8S HPA
prometheus-adapter插件官网

kube-prometheus监控套件默认已经安装该插件
prometheus-adapter可以通过应用程序暴露metrics来实现HPA，扩展了K8S默认提供的HPA不足之处，常用的指标有QPS 大小等

部署app

apiVersion: apps/v1
kind: Deployment
metadata:labels:app: metrics-appname: metrics-app
spec:replicas: 1selector:matchLabels:app: metrics-apptemplate:metadata:labels:app: metrics-appannotations:     prometheus.io/scrape: "true"            # 设置允许被prometheus采集prometheus.io/port: "80"                    # prometheus 采集的端口prometheus.io/path: "/metrics"          # prometheus 采集的路径spec:containers:- image: ikubernetes/metrics-appname: metrics-appports:- name: webcontainerPort: 80resources:requests:cpu: 200mmemory: 256MireadinessProbe:httpGet:path: /port: 80initialDelaySeconds: 3periodSeconds: 5livenessProbe:httpGet:path: /port: 80initialDelaySeconds: 3periodSeconds: 5
---
apiVersion: v1
kind: Service
metadata:name: metrics-applabels:app: metrics-app
spec:ports:- name: webport: 80targetPort: 80selector:app: metrics-app

curl一下发现该app暴露了如下metrics

# HELP http_requests_total The amount of requests in total
# TYPE http_requests_total counter
http_requests_total 1
# HELP http_requests_per_second The amount of requests per second the latest ten seconds
# TYPE http_requests_per_second gauge
http_requests_per_second 1

配置app ServiceMonitor 自动采集数据

apiVersion: monitoring.coreos.com/v1
kind: ServiceMonitor
metadata:name: metrics-appnamespace: default
spec:endpoints:- bearerTokenSecret:key: ""interval: 15sport: webnamespaceSelector:matchNames:- defaultselector:matchLabels:app: metrics-app

helm安装prometheus-adapter并做配置

通过如下的 PromQL 计算出每个业务 Pod 的 QPS 监控。示例如下：

sum(rate(http_requests_total[2m])) by (pod)

将其转换为 prometheus-adapter 的配置，创建 values.yaml，内容如下：

rules:
- seriesQuery: 'http_requests_total{namespace!="",pod!=""}'resources:overrides:namespace: {resource: "namespace"}pod: {resource: "pod"}name:matches: "^(.*)_total"as: "${1}_per_second" # PromQL 计算出来的 QPS 指标， 也可写成 http_requests_qpsmetricsQuery: 'sum(rate(<<.Series>>{<<.LabelMatchers>>}[2m])) by (<<.GroupBy>>)'
prometheus:url: http://prometheus.monitoring.svc.cluster.local # 替换 Prometheus API 的地址 (不写端口)port: 9090

helm安装

helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
helm repo update
# Helm 3
helm install prometheus-adapter prometheus-community/prometheus-adapter -f values.yaml
# Helm 2
# helm install --name prometheus-adapter prometheus-community/prometheus-adapter -f values.yaml

创建hpa策略

下述示例 QPS 为800m，表示 QPS 值为0.8。

apiVersion: autoscaling/v2beta2
kind: HorizontalPodAutoscaler
metadata:name: metrics-appnamespace: default
spec:scaleTargetRef:apiVersion: apps/v1kind: Deploymentname: metrics-appminReplicas: 1maxReplicas: 6metrics:- type: Podspods:metric:name: http_requests_per_second # http_requests_qpstarget:type: AverageValueaverageValue: 800m # 800m 即0.8个/秒，如果是阀值设置为每秒10个，这里的值就应该填写10000m， 不写单位m就是个数

kubectl get hpa
NAME              REFERENCE                TARGETS          MINPODS   MAXPODS   REPLICAS   AGE
metrics-app   Deployment/metrics-app   <unknown>/800m   1         6         1          30h

验证规则

Custom Metrics API 返回配置的 QPS 相关指标
规则不生效则删除pod重新加载下配置

kubectl get --raw /apis/custom.metrics.k8s.io/v1beta1
kubectl get --raw /apis/custom.metrics.k8s.io/v1beta1/namespaces/metrics-app/pods/*/http_requests_per_second
# kubectl get --raw /apis/custom.metrics.k8s.io/v1beta1/namespaces/metrics-app/pods/*/http_requests_qps

压力测试查看pod数量变化

while sleep 0.01; do wget -q -O- http://metrics-app/metrics; done

redis

redis-exporter

https://github.com/oliver006/redis_exporter
grafana: 11835

apiVersion: v1
kind: Secret
metadata:name: redis-secret-testnamespace: exporter
type: Opaque
stringData:password: your password  #对应 Redis 密码

apiVersion: apps/v1
kind: Deployment
metadata:labels:k8s-app: redis-exporter # 根据业务需要调整成对应的名称，建议加上 Redis 实例的信息name: redis-exporter # 根据业务需要调整成对应的名称，建议加上 Redis 实例的信息namespace: exporter
spec:replicas: 1selector:matchLabels:k8s-app: redis-exporter # 根据业务需要调整成对应的名称，建议加上 Redis 实例的信息template:metadata:labels:k8s-app: redis-exporter # 根据业务需要调整成对应的名称，建议加上 Redis 实例的信息spec:containers:- env:- name: REDIS_ADDRvalue: ip:port # 对应 Redis 的 ip:port- name: REDIS_PASSWORDvalueFrom:secretKeyRef:name: redis-secret-testkey: passwordimage: oliver006/redis_exporterimagePullPolicy: IfNotPresentname: redis-exporterports:- containerPort: 9121name: metric-port  # 这个名称在配置抓取任务的时候需要securityContext:privileged: falseterminationMessagePath: /dev/termination-logterminationMessagePolicy: FilednsPolicy: ClusterFirstimagePullSecrets:- name: 你的imagePullSecrets

prometheus PodMonitor配置

apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:name: redis-exporternamespace: exporter
spec:namespaceSelector:matchNames:- exporterpodMetricsEndpoints:- interval: 30spath: /metricsport: metric-portselector:matchLabels:k8s-app: redis-exporter

Redis Data Source 插件

使用最近推出的grafana redis插件也是个不错的选择，包含stream式的实时监控和集群监控dashboard，stream式的dashborad支持在grafana面板中输入命令行。缺点就是缺乏审计功能。折中而言可以通过只读账号限制，不过还是不够完美。
https://grafana.com/grafana/plugins/redis-app/

插件列表中才能看到，配置下redis信息就可以

grafana-cli plugins install redis-app

命令行dashboard

集群dashboard

rocketmq-exporter

grafana: 10477

https://github.com/apache/rocketmq-exporter

docker版: docker container run -it --rm -p 5557:5557 -e rocketmq.config.namesrvAddr=IP:9876 huiwq1990/rocketmq-exporter

k8s版:

apiVersion: apps/v1
kind: Deployment
metadata:labels:k8s-app: rocketmq-exportername: rocketmq-exporternamespace: exporter
spec:replicas: 1selector:matchLabels:k8s-app: rocketmq-exporter template:metadata:labels:k8s-app: rocketmq-exporter spec:containers:- env:- name: rocketmq.config.namesrvAddrvalue: "IP:9876"- name: rocketmq.config.webTelemetryPathvalue: "/metrics"- name: server.portvalue: "5557"image: huiwq1990/rocketmq-exporterimagePullPolicy: IfNotPresentname: rocketmq-exporterports:- containerPort: 5557name: metric-port  # 这个名称在配置抓取任务的时候需要securityContext:privileged: falseterminationMessagePath: /dev/termination-logterminationMessagePolicy: FilednsPolicy: ClusterFirst

apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:name: rocketmq-exporternamespace: exporter
spec:namespaceSelector:matchNames:- exporterpodMetricsEndpoints:- interval: 30spath: /metricsport: metric-portselector:matchLabels:k8s-app: rocketmq-exporter

mysql-exporter

https://github.com/prometheus/mysqld_exporter

elasticsearch_exporter

https://github.com/justwatchcom/elasticsearch_exporter

grafana：6483

apiVersion: v1
kind: Secret
metadata:name: es-secret-testnamespace: es-demo
type: Opaque
stringData:esURI: http://admin:pass@localhost:9200  #对应 ElasticSearch 的 URI

apiVersion: apps/v1
kind: Deployment
metadata:labels:k8s-app: es-exportername: es-exporternamespace: exporter
spec:progressDeadlineSeconds: 600replicas: 1revisionHistoryLimit: 10selector:matchLabels:k8s-app: es-exporterstrategy:rollingUpdate:maxSurge: 25%maxUnavailable: 25%type: RollingUpdatetemplate:metadata:creationTimestamp: nulllabels:k8s-app: es-exporterspec:containers:- env:- name: ES_ALLvalue: "true"- name: ES_URIvalueFrom:secretKeyRef:key: esURIname: es-secret-testoptional: falseimage: bitnami/elasticsearch-exporter:latestimagePullPolicy: IfNotPresentname: es-exporterports:- containerPort: 9114name: metric-portprotocol: TCPresources: {}securityContext:privileged: falseterminationMessagePath: /dev/termination-logterminationMessagePolicy: FilednsPolicy: ClusterFirstimagePullSecrets:- name: 你的imagePullSecrets

prometheus PodMonitor

apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:name: es-exporternamespace: exporter
spec:namespaceSelector:matchNames:- exporterpodMetricsEndpoints:- interval: 15spath: /metricsport: metric-portselector:matchLabels:k8s-app: es-exporter

mongodb exporter

https://github.com/percona/mongodb_exporter
https://hub.docker.com/r/percona/mongodb_exporter
https://devconnected.com/mongodb-monitoring-with-grafana-prometheus/
grafana dashboard
https://github.com/percona/grafana-dashboards/tree/pmm-1.x/dashboards

腾讯云对接Grafana

腾讯云监控插件及大盘
日志服务对接Grafana

卸载监控套件

kubectl delete --ignore-not-found=true -f manifests/ -f manifests/setup

参考文献：
https://github.com/prometheus-operator/kube-prometheus
https://github.com/prometheus/jmx_exporter
https://grafana.com/grafana/dashboards/8563
https://www.jianshu.com/p/7fb9e68a5a6c
https://www.it610.com/article/1288617417697730560.htm

转载请注明出处。

Prometheus监控（kube-prometheus）相关推荐

1. caas k8s主控节点如何查询_k8s中部署prometheus监控告警系统prometheus系列文章第一篇...

   前言 本篇文章主要介绍k8s集群中部署prometheus,并且配置prometheus的动态.静态服务发现,实现监控容器.物理节点.service.pod等资源指标,配置prometheus的web ...

2. k8s中部署prometheus监控告警系统-prometheus系列文章第一篇

   前言 本篇文章主要介绍k8s集群中部署prometheus,并且配置prometheus的动态.静态服务发现,实现监控容器.物理节点.service.pod等资源指标,配置prometheus的web ...

3. 监控系统 Prometheus 和 Zabbix 对比

   新公司要上监控,面试提到了 Prometheus 是公司需要的监控解决方案,我当然是选择跟风了. 之前主要做的是 Zabbix,既然公司需要 Prometheus,那没办法,只能好好对比一番,了解下, ...

4. 云计算监控—Prometheus监控系统（文末赠书）

   陈金窗 刘政委 张其栋 郑少斌 读完需要 20 分钟 速读仅需 7 分钟 本文摘自于<Prometheus 监控技术与实战>一书,从云计算时代的业务特点出发,探讨了云计算监控的目标和挑战, ...

5. 普罗米修斯？古希腊泰坦之神？异形？不，新一代企业级监控组件—Prometheus

   文章目录 Prometheus + Grafana 监控效果图 一.Prometheus 简介 Prometheus成长历程 Prometheus诞生背景 云时代的到来 Prometheus 监控特点 ...

6. 【第7期】云计算监控——Prometheus监控系统

   本文摘自于<Prometheus监控技术与实战>一书,从云计算时代的业务特点出发,探讨了云计算监控的目标和挑战,梳理了云资源监控的范围及监控系统实现的一般方式.接着从开源监控软件的演进出发 ...

7. k8s部署Kube Prometheus（Prometheus Operator）

   摘要 本文通过Prometheus-operator框架一键化安装prometheus.alertmanage.granfana,并配置企业微信api以及告警推送,搭建 prometheus 的前提环 ...

8. 监控神器Prometheus用不对，也就是把新手村的剑

   点击上方"方志朋",选择"设为星标" 回复"666"获取新整理的面试文章 作者丨徐亚松 来源丨http://www.xuyasong.com ...

9. SpringBoot使用prometheus监控

   本文介绍SpringBoot如何使用Prometheus配合Grafana监控. 1.关于Prometheus Prometheus是一个根据应用的metrics来进行监控的开源工具.相信很多工程都在 ...

10. Prometheus监控业务指标

    在Kubernetes已经成了事实上的容器编排标准之下,微服务的部署变得非常容易.但随着微服务规模的扩大,服务治理带来的挑战也会越来越大.在这样的背景下出现了服务可观测性(observability) ...

最新文章

1. Servlet的Filter的使用
2. 【LeetCode】004 Median of Two Sorted Arrays 两个排序数组合并后的中位数
3. jQuery UI Widget(1.8.1)工作原理--转载
4. 类成员指针和0x0地址转换
5. VTK：vtkCursor2D用法实战
6. Linux的软硬链接ln
7. 深度学习之生成对抗网络（8）WGAN-GP实战
8. 设计模式_单实体模式
9. 段错误、内存泄漏、内存溢出、堆溢出、栈溢出
10. linux 压缩成bz2,linux 将文件压缩成bz2格式 命令：bzip2
11. 8000种子用户创造指数级裂变，谁说当年校内网发家是靠鸡腿？
12. 开源正在吞噬软件业？看开源的7大理念
13. yolov5-pytorch训练自己的数据集
14. 如何动态为 tabstrip 中的 tab 页签指定标题
15. STM32应用开发实践教程：初识STM32
16. 解决opencv打开视频上下翻转问题
17. 毕业设计 基于51单片机老人防跌倒GSM短信报警系统
18. 志愿者服务团队组织由哪些组织组成
19. 基于Python实现的PageRank算法
20. CPU 内存 磁盘的关系

热门文章

1. java笔记——多线程笔记
2. 赢鸡：2010年2月网络经典段子集锦
3. 【nginx】version `OPENSSL_1.0.2‘ not found
4. 在word中怎么把图片转换成文字格式
5. 《10人以下小团队管理手册》读书摘记
6. 小白知识之：画图软件中文字横横竖竖的奥秘
7. 2020上海国际电力电工展——安科瑞参展产品提前剧透
8. PTA L1-054 福到了 (15 分)
9. 星起航：抖音小店体验分高有哪些好处？
10. 解决Ubuntu12.04安装python-dev时依赖出错的问题