The following instructions describe how I have setup server-side monitoring for Impromat.app. The server is running Dokku for managing all services.
The monitoring primarily relies on:
- Prometheus
- Grafana
- node-exporter
- cAdvisor
It also sets up a data source for:
- PostgreSQL
Tested with:
- Ubuntu 22.04
- Dokku 0.30.2
Based on this article with adaptions to make it work with dokku version 0.30.2.
Replace
impromat.appwith your own domain.
Install required plugins
sudo dokku plugin:install http-auth https://github.com/dokku/dokku-http-auth.git
sudo dokku plugin:install letsencrypt https://github.com/dokku/dokku-letsencrypt.gitInstall Prometheus
Add dedicated network for prometheus services (see Dokku Networking):
dokku network:create prometheus-bridgeCreate prometheus app:
dokku apps:create prometheus
dokku proxy:ports-add prometheus http:80:9090
dokku network:set prometheus attach-post-deploy prometheus-bridgeCreate volume mappings:
sudo mkdir -p /var/lib/dokku/data/storage/prometheus/{config,data}
sudo touch /var/lib/dokku/data/storage/prometheus/config/{alert.rules,prometheus.yml}
sudo chown -R nobody:nogroup /var/lib/dokku/data/storage/prometheus
dokku storage:mount prometheus /var/lib/dokku/data/storage/prometheus/config:/etc/prometheus
dokku storage:mount prometheus /var/lib/dokku/data/storage/prometheus/data:/prometheusAdd prometheus docker start command:
dokku config:set --no-restart prometheus DOKKU_DOCKERFILE_START_CMD="--config.file=/etc/prometheus/prometheus.yml
--storage.tsdb.path=/prometheus
--web.console.libraries=/usr/share/prometheus/console_libraries
--web.console.templates=/usr/share/prometheus/consoles
--web.enable-lifecycle
--storage.tsdb.no-lockfile"
--config.filesets the location of the prometheus config path.
Create config file at /var/lib/dokku/data/storage/prometheus/config/prometheus.yml:
global:
scrape_interval: 15s
scrape_configs:
- job_name: "prometheus"
scrape_interval: 15s
static_configs:
- targets:
- "localhost:9090"
- job_name: node-exporter
scrape_interval: 15s
scheme: https
basic_auth:
username: <username>
password: <password>
static_configs:
- targets:
- "node-exporter.impromat.app"
- job_name: cadvisor
scrape_interval: 15s
scheme: http
static_configs:
- targets:
- cadvisor.web:8080Deploy prometheus:
docker pull prom/prometheus:latest
docker tag prom/prometheus:latest dokku/prometheus:latest
dokku git:from-image prometheus dokku/prometheus:latest
dokku domains:set prometheus prometheus.impromat.app
dokku letsencrypt:enable prometheus
dokku http-auth:enable prometheus USER PASSWORDValidate running Prometheus at https://prometheus.impromat.app/targets (using respective USER and PASSWORD)
Create node-exporter
dokku apps:create node-exporter
dokku proxy:ports-set node-exporter http:80:9100
dokku config:set --no-restart node-exporter DOKKU_DOCKERFILE_START_CMD="--collector.textfile.directory=/data --path.procfs=/host/proc --path.sysfs=/host/sys"
dokku docker-options:add node-exporter deploy "--net=host"
dokku checks:disable node-exporterStorage mounts:
sudo mkdir -p /var/lib/dokku/data/storage/node-exporter
sudo chown nobody:nogroup /var/lib/dokku/data/storage/node-exporter
dokku storage:mount node-exporter /proc:/host/proc:ro
dokku storage:mount node-exporter /:/rootfs:ro
dokku storage:mount node-exporter /sys:/host/sys:ro
dokku storage:mount node-exporter /var/lib/dokku/data/storage/node-exporter:/dataDeploy node-exporter:
docker image pull prom/node-exporter:latest
docker image tag prom/node-exporter:latest dokku/node-exporter:latest
dokku git:from-image node-exporter dokku/node-exporter:latest
dokku domains:set node-exporter node-exporter.impromat.app
dokku letsencrypt:enable node-exporter
dokku http-auth:enable node-exporter USER PASSWORDCreate cAdvisor
dokku apps:create cadvisor
dokku proxy:ports-set cadvisor http:80:8080
dokku config:set --no-restart cadvisor DOKKU_DOCKERFILE_START_CMD="--docker_only --housekeeping_interval=10s --max_housekeeping_interval=60s"
dokku network:set cadvisor attach-post-deploy prometheus-bridgeStorage mounts:
dokku storage:mount cadvisor /:/rootfs:ro
dokku storage:mount cadvisor /sys:/sys:ro
dokku storage:mount cadvisor /var/lib/docker:/var/lib/docker:ro
dokku storage:mount cadvisor /var/run:/var/run:rwDeploy cadvisor:
docker image pull gcr.io/cadvisor/cadvisor:latest
docker image tag gcr.io/cadvisor/cadvisor:latest dokku/cadvisor:latest
dokku git:from-image cadvisor dokku/cadvisor:latestSetup Grafana
Create app:
dokku apps:create grafana
dokku proxy:ports-add grafana http:80:3000
dokku network:set grafana attach-post-deploy prometheus-bridgeStorage mounts:
sudo mkdir -p /var/lib/dokku/data/storage/grafana/{config,data,plugins}
sudo mkdir -p /var/lib/dokku/data/storage/grafana/config/provisioning/datasources
sudo chown -R 472:472 /var/lib/dokku/data/storage/grafana
dokku storage:mount grafana /var/lib/dokku/data/storage/grafana/config/provisioning/datasources:/etc/grafana/provisioning/datasources
dokku storage:mount grafana /var/lib/dokku/data/storage/grafana/data:/var/lib/grafana
dokku storage:mount grafana /var/lib/dokku/data/storage/grafana/plugins:/var/lib/grafana/pluginsAdd prometheus data source to /var/lib/dokku/data/storage/grafana/config/provisioning/datasources/prometheus.yml:
datasources:
- name: Prometheus
type: prometheus
access: proxy
orgId: 1
url: http://prometheus.web:9090
basicAuth: false
isDefault: true
version: 1
editable: trueDeploy Grafana:
docker pull grafana/grafana:latest
docker tag grafana/grafana:latest dokku/grafana:latest
dokku git:from-image grafana dokku/grafana:latest
dokku letsencrypt:enable grafanaLogin to Grafana
Go to https://grafana.impromat.app. Login via admin/admin and set a new password.
Adding more data sources
PostgreSQL
Get database info from dokku via:
dokku postgres:info <db-service-name>Add /var/lib/dokku/data/storage/grafana/config/provisioning/datasources/postgresql.yml:
datasources:
- name: Postgres
type: postgres
access: proxy
url: <Internal Ip>:5432
user: postgres
database: <database name>
secureJsonData:
password: <DB_PASSWORD>
jsonData:
database: <database name>
sslmode: "disable" # disable/require/verify-ca/verify-full
maxOpenConns: 0 # Grafana v5.4+
maxIdleConns: 2 # Grafana v5.4+
connMaxLifetime: 14400 # Grafana v5.4+
postgresVersion: 1400 # 903=9.3, 904=9.4, 905=9.5, 906=9.6, 1000=10