systems/infrastructure
1
Fork 0
Code Issues 1 Pull requests 16 Activity Actions

Monitor headscale with prometheus
All checks were successful
/ terraform (push) Successful in 29s
Details
/ ansible (push) Successful in 1m38s
Details

Browse source
This commit is contained in:
Jake Howard 2024-01-27 17:40:02 +00:00
parent b51677b795
commit 53c758a781
Signed by: jake
GPG key ID: 57AFB45680EDD477
3 changed files with 14 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
ansible/roles/forrest/files/prometheus/prometheus.yml
View file

@ -155,3 +155,13 @@ scrape_configs:
static_configs: static_configs:
- targets: - targets:
- speedtest_exporter:9516 - speedtest_exporter:9516
- job_name: headscale
metrics_path: /metrics
static_configs:
- targets:
- "{{ nebula.clients.casey.ip }}:9090"
metric_relabel_configs:
- source_labels: [__name__]
regex: go_.+
action: drop

2
ansible/roles/headscale/files/headscale.yml
View file

@ -21,7 +21,7 @@ listen_addr: 127.0.0.1:8416
# to keep this endpoint private to your internal # to keep this endpoint private to your internal
# network # network
# #
metrics_listen_addr: 127.0.0.1:9090 metrics_listen_addr: "{{ private_ip }}:9090"
# Address to listen for gRPC. # Address to listen for gRPC.
# gRPC is used for controlling a headscale server # gRPC is used for controlling a headscale server

3
ansible/roles/ingress/files/nftables.conf
View file

@ -36,5 +36,8 @@ table inet filter {
# Allow traffic from nebula to proxmox network # Allow traffic from nebula to proxmox network
ip saddr {{ nebula.cidr }} ip daddr {{ pve_hosts.internal_cidr }} accept ip saddr {{ nebula.cidr }} ip daddr {{ pve_hosts.internal_cidr }} accept
ip saddr {{ pve_hosts.internal_cidr }} ip daddr {{ nebula.cidr }} ct state related,established accept ip saddr {{ pve_hosts.internal_cidr }} ip daddr {{ nebula.cidr }} ct state related,established accept
# Allow monitoring of nebula network
ip saddr {{ pve_hosts.forrest.ip }}/32 ip daddr {{ nebula.cidr }} accept
} }
} }