Collectd
Packetbeat
Our great sponsors
Collectd | Packetbeat | |
---|---|---|
7 | 15 | |
2,982 | 11,994 | |
1.1% | 0.4% | |
9.2 | 9.9 | |
10 days ago | 3 days ago | |
C | Go | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Collectd
-
μMon: Stupid simple monitoring
https://collectd.org/ does the gathering (and writing to RRDTool database, if you so desire) part very well. Many plugins, easy to add more (just return one line of text)
Still need RRD viewere but that's not a huge stack
And it scales all the way to hundreds of hosts, as on top of network send/receive of stats it supports few other write formats aside from just RRD files.
-
Post Mortem on Mastodon Outage with 30k users
Then you will have same problems but now you can bother manufacturer about it!
Also unless there is something horribly wrong about how often data is written, that SSD should run for ages.
We ran (for a test) consumer SSDs in busy ES cluster and they still lasted like 2 years just fine
The whole setup was a bit of overcomplicated too. RAID10 with 5+1 or 7+1 (yes Linux can do 7 drive RAID10) with hotspare woud've been entirely fine, easier, and most likely faster. You need backups anyway so ZFS doesn't give you much here, just extra CPU usage
Either way, monitoring wait per drive (easy way is to just plug collectd [1] into your monitoring stack, it is light and can monitor A TON of different metrics)
* [1]https://collectd.org/
-
IT Pro Tuesday #217 - Python Frameworks, Logging Tutorial, Android Terminal & More
Collectd pulls metrics from the OS, applications, logfiles and external devices for use in monitoring systems, finding performance bottlenecks and capacity planning. hombre_sabio explains, "Collectd is a tiny daemon that gathers information from a system. It enables mechanisms to collect and observe the values in different techniques. It is an open-source monitoring tool to retrieve and manage SNMP master agents."
-
PHP7.4 Installation Fail
Setting up php7.4-fpm (7.4.25-1+deb11u1) ... Job for php7.4-fpm.service failed because a fatal signal was delivered to the co ntrol process. See "systemctl status php7.4-fpm.service" and "journalctl -xe" for details. invoke-rc.d: initscript php7.4-fpm, action "start" failed. ● php7.4-fpm.service - The PHP 7.4 FastCGI Process Manager Loaded: loaded (/lib/systemd/system/php7.4-fpm.service; enabled; vendor pre set: enabled) Active: failed (Result: signal) since Mon 2021-12-27 23:53:51 GMT; 215ms ag o Docs: man:php-fpm7.4(8) Process: 2755 ExecStart=/usr/sbin/php-fpm7.4 --nodaemonize --fpm-config /etc /php/7.4/fpm/php-fpm.conf (code=killed, signal=ILL) Process: 2756 ExecStopPost=/usr/lib/php/php-fpm-socket-helper remove /run/ph p/php-fpm.sock /etc/php/7.4/fpm/pool.d/www.conf 74 (code=exited, status=0/SUCCES S) Main PID: 2755 (code=killed, signal=ILL) CPU: 281ms Dec 27 23:53:51 raspberrypi systemd[1]: Starting The PHP 7.4 FastCGI Process Man ager... Dec 27 23:53:51 raspberrypi systemd[1]: php7.4-fpm.service: Main process exited, code=killed, status=4/ILL Dec 27 23:53:51 raspberrypi systemd[1]: php7.4-fpm.service: Failed with result ' signal'. Dec 27 23:53:51 raspberrypi systemd[1]: Failed to start The PHP 7.4 FastCGI Proc ess Manager. dpkg: error processing package php7.4-fpm (--configure): installed php7.4-fpm package post-installation script subprocess returned error exit status 1 Setting up collectd (5.12.0-7.1) ... Job for collectd.service failed because a fatal signal was delivered to the cont rol process. See "systemctl status collectd.service" and "journalctl -xe" for details. invoke-rc.d: initscript collectd, action "restart" failed. ● collectd.service - Statistics collection and monitoring daemon Loaded: loaded (/lib/systemd/system/collectd.service; enabled; vendor prese t: enabled) Active: activating (auto-restart) (Result: signal) since Mon 2021-12-27 23: 53:52 GMT; 200ms ago Docs: man:collectd(1) man:collectd.conf(5) https://collectd.org Process: 2768 ExecStartPre=/usr/sbin/collectd -t (code=killed, signal=SEGV) CPU: 24ms dpkg: error processing package collectd (--configure): installed collectd package post-installation script subprocess returned error e xit status 1 dpkg: dependency problems prevent configuration of openmediavault: openmediavault depends on collectd; however: Package collectd is not configured yet. dpkg: error processing package openmediavault (--configure): dependency problems - leaving unconfigured Errors were encountered while processing: php7.4-fpm collectd openmediavault E: Sub-process /usr/bin/dpkg returned an error code (1)
-
CPU Performance of a docker minecraft java server on Raspberry Pi 4
For metrics storage I'm using a Graphite database and the graph UI itself is Grafana. To get these I'm using the Debian repos they supply with mostly off-the-shelf configs. For collecting metrics from the Pi to send to Graphite I use collectd. It has a lot of off-the-shelf plugins you can use to grab metrics like CPU usage & load average, network in/out, memory stats etc. The Minecraft-specific stuff you can get from configuring collectd plugins as well, like the tick lag graph I use the "tail" plugin to follow and parse the server log.
-
Lightweight alternative to Grafana
For monitoring, personally I use collectd and Collectd Graph Panel (sadly the latter is abandoned, but it still works fine)
Packetbeat
- Sample Windows Logs
-
Best practice guide metricbeat rollup jobs
Found this github issue (https://github.com/elastic/beats/issues/9252) that describes the problem. Unfortunate after 4 years this is not resolved. I almost seems that Elastic does not want you to save on disk space.
-
Problems with enabling filesets in Filebeat
This is a bug in 8.x https://github.com/elastic/beats/issues/30916
-
Supported OS conflict between Wazuh and Filebeat
Yet, this PR in elastic/beats repo adds clone3 syscall to solve the pthread issue and they say it starts with glibc 2.34. Basically, they added clone3 to the allowed syscalls. For those who gets the same error, they can just combine both to be safe, which I did:
- Beats – The Lightweight Shippers of the Elastic Stack
- Beats - The Lightweight Shippers of the Elastic Stack
-
Filebeat vs Rsyslog
Question inspired from this issue
- Elasticsearch and kibana not in repo anymore?
- Facing 403 access denied error while connecting from logstash to amazon elasticsearch
-
Filebeat modules
Over at Elasticsearch you're not seeing all the parsed fields correctly? If so, the answer lies in the Filebeat Config and the Ingest Pipeline. (taking DHCP as an example in the links - there are other modules that may be relevant to you like DNS OSCP etc).
What are some alternatives?
Telegraf - The plugin-driven server agent for collecting & reporting metrics.
Grafana - The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.
prometheus - The Prometheus monitoring system and time series database.
Collectl - Extending collectl to send process data to graphite
Statsd - Daemon for easy but powerful stats aggregation
InfluxDB - Scalable datastore for metrics, events, and real-time analytics
Diamond - Diamond is a python daemon that collects system metrics and publishes them to Graphite (and others). It is capable of collecting cpu, memory, network, i/o, load and disk metrics. Additionally, it features an API for implementing custom collectors for gathering metrics from almost any source.
logstash-output-elasticsearch
Ganglia - Ganglia Web Frontend
tcollector - Data collection framework for OpenTSDB