Skip to content

Commit

Permalink
Setup node-exporter for every node
Browse files Browse the repository at this point in the history
  • Loading branch information
@peterablehmann
peterablehmann committed Apr 17, 2024
1 parent 10b9b55 commit 1d37bb9
Show file tree
Hide file tree
Showing 3 changed files with 13 additions and 45 deletions.
2 changes: 2 additions & 0 deletions modules/common/default.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,5 +23,7 @@

sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];

networking.nftables.enable = true;

system.stateVersion = "23.11";
}
39 changes: 5 additions & 34 deletions modules/common/exporters.nix
View file
Original file line number Diff line number Diff line change
@@ -1,40 +1,11 @@
{ config
, inputs
, ...
}:
{
networking.firewall.allowedTCPPorts = [ 80 443 ];

sops.secrets."monitoring/basicAuthFile" = {
sopsFile = "${inputs.self}/secrets/common.yaml";
owner = "nginx";
};

security.acme = {
defaults.email = "[email protected]";
acceptTerms = true;
certs."${config.networking.fqdn}" = { };
};

services.nginx = {
enable = true;
recommendedTlsSettings = true;
recommendedOptimisation = true;
recommendedProxySettings = true;
virtualHosts."${config.networking.hostName}.${config.networking.domain}" = {
enableACME = true;
forceSSL = true;
locations."/exporters/node-exporter/" = {
proxyPass = "http://${config.services.prometheus.exporters.node.listenAddress}:${builtins.toString config.services.prometheus.exporters.node.port}/";
basicAuthFile = config.sops.secrets."monitoring/basicAuthFile".path;
};
};
};

services.prometheus.exporters.node = {
enable = true;
listenAddress = "127.0.0.1";
extraFlags = [ "--web.telemetry-path=/exporters/node-exporter" ];
openFirewall = true;
firewallRules =
"ip saddr 65.108.0.24 tcp dport 9100 accept
ip6 saddr 2a01:4f9:6a:4f6f::201 tcp dport 9100 accept
tcp dport 9100 drop";
enabledCollectors = [
"systemd"
];
Expand Down
17 changes: 6 additions & 11 deletions nodes/monitoring/modules/prometheus.nix
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,4 @@
{ config
, inputs
{ inputs
, ...
}:
{
Expand All @@ -16,19 +15,15 @@
{
job_name = "node-exporter";
scrape_interval = "5s";
scheme = "https";
scheme = "http";
static_configs = [{
targets = [
"mns.xnee.net"
"monitoring.xnee.net"
"sync.xnee.de"
"cache.xnee.net:9100"
"mns.xnee.net:9100"
"monitoring.xnee.net:9100"
"sync.xnee.de:9100"
];
}];
metrics_path = "/exporters/node-exporter/metrics";
basic_auth = {
username = "prometheus";
password_file = config.sops.secrets."basicAuth/password".path;
};
}
{
job_name = "prometheus";
Expand Down

0 comments on commit 1d37bb9

Please sign in to comment.