October 24, 2021 15:16
Setup
- Install with
bash <(curl -Ss https://my-netdata.io/kickstart-static64.sh)or (on e.g. a Raspberry Pi)bash <(curl -Ss https://my-netdata.io/kickstart.sh) - Restrict to localhost only (already done for the debian package) by appending (
sudo /opt/netdata/etc/netdata/edit-config netdata.conf):This allows other ips to be whitelisted: E.g. an apache proxied webinterface would require localhost - any other ip must be allowed![web] bind to = *:19999 allow connections from = localhost 42.12.322.424 - Restart netdata
sudo systemctl restart netdata - NICE2KNOW Check the generated config out at http://localhost:19999/netdata.conf
Enable autostart (if disabled)
To allow autostarting of the netdata service you have to unmask the systemd unit with sudo systemctl unmask netdata and sudo systemctl enable netdata…
Claim a node
Just use the command from the cloud - but make sure to add /opt/netdata/bin/ before the netdata-claim.sh shell.
Extend the history
By using (sudo /opt/netdata/etc/netdata/edit-config netdata.conf) - dbengine is the default:
[global] memory mode = dbengine page cache size = 32 dbengine disk space = 330This holds 32 MB of data in RAM and dumps (compresses) them to disk until 330 MB are stored. This would be enough to store the history of one day - according to this.
[global] history = SECONDSFor every hour of data, Netdata needs about 25MB of RAM. If you can dedicate about 100MB of RAM to Netdata, you should set its database size to 4 hours.
Setup a slave / master relationship
This configures a netdata instance to only collect and send the metrics to the master (the slave cant generate alarms anymore). Both must share the same API KEY (obtained by uuidgen)! The master then can decide to store the data e.g. to the dbengine or keep them in ram…
Note:
enabledtoggles if the data should be send (on slave toggles the feature, on master it toggles the proxy mode)- The api key can be shared from multiple hosts
- The master can select other memory modes too - every unset option will be inherited from the default* ones
allow fromare simple patterns ->10.0.0.*or!192.168.0.1or*…
Slave
- Edit the global config:
sudo /opt/netdata/etc/netdata/edit-config netdata.conf - Disable own storage and webinterface (= slave mode):
[global] memory mode = none [web] mode = none - Edit the config:
sudo /opt/netdata/etc/netdata/edit-config stream.conf - Now add the master (append ‘:SSL’ to the address for https (respect the port!)):
[stream] enabled = yes destination = [TARGET_ADDR]:[TARGET_WEB_PORT] api key = xxxxxxxx-xxxx-xxxxx-xxxx-xxxxxxxxxxxx
Master
- Edit the config:
sudo /opt/netdata/etc/netdata/edit-config stream.conf - Now add the slave:
[xxxxxxxx-xxxx-xxxxx-xxxx-xxxxxxxxxxxx] enabled = yes default memory mode = dbengine health enabled by default = auto allow from = 10.0.0.*
Add this to the crontab…
You should add the following to the crontab of root. This makes sure that netdata “starts” after e.g. the local loopback interface is up, so it binds also to that address (otherwise the vms could get a connection refused after bootup).
@reboot sleep 60 && systemctl restart netdata
Add Teleram bot notifications
- Edit the config with
sudo /opt/netdata/etc/netdata/edit-config health_alarm_notify.confand modify it so it contains:SEND_TELEGRAM="YES" TELEGRAM_BOT_TOKEN="[BOT_API_TOKEN]" DEFAULT_RECIPIENT_TELEGRAM="[TARGET_CHAT_ID]" - Done - test it (see here at the end)
How to mute a specific alarm
One or more alarms are useless and can be ignored? Check out the source row at the dashboard (-> e.g. sudo /opt/netdata/etc/netdata/edit-config health.d/...). Go there and change the recipient from to: [someone] to to: silent. Or disable it by comment it with # out!
~ Finally: Quiet nights! ~
How to prevent package drop warnings without muting the alarm
- Apply
sudo sysctl -w net.core.netdev_budget_usecs=6400 && sudo sysctl -w net.core.netdev_budget=600as temporary fix. The alarm should now fade. - If that was successful: Apply them permanent in /etc/sysctl.conf by adding:
net.core.netdev_budget_usecs=6400 net.core.netdev_budget=600
Integrate Windows Machines
This uses a collector on the machine, wich is then queried by the Netdata WMI collector. To start download and install on Windows the collector (MSI) using this command:
msiexec /i [MSI_INSTALLER_PATH] LISTEN_ADDR=[OWN_TRUSTED_NETWORK_IP] LISTEN_PORT=[RANDOM_PORT_NUMBER]
Then open on the Netdata server the config to add the collector…
sudo /opt/netdata/etc/netdata/edit-config go.d/wmi.conf
…and insert these lines (autodetection_retry enforces retries after unsuccessful connection attempts):
autodetection_retry: 30
jobs:
- name: win_machine
url: http://[OWN_TRUSTED_NETWORK_IP]:[RANDOM_PORT_NUMBER]/metrics
Done!
Integrate OpenVPN
Make sure to enable the management interface on the OpenVPN server beforehand! Then open on the Netdata server the config to add the collector…
sudo /opt/netdata/etc/netdata/edit-config go.d/openvpn.conf
…and insert these lines (autodetection_retry enforces retries after unsuccessful connection attempts):
autodetection_retry: 30
jobs:
- name: local
address: 127.0.0.1:7505
Then you have to manually enable the openvpn collector (it is disabled by default, as OpenVPN only allows one management interface client):
sudo /opt/netdata/etc/netdata/edit-config go.d.conf
There you have to find the line…
# openvpn: yes
…and uncomment it. Restart Netdata & done!
Nett2Know
If you get much dbengine fs errors and can’t add any more working instances to the netdata streaming config (the access.log is filled with CANNOT ACQUIRE HOST) you should increase the file descriptor limit.
Update (non-debian package only)
sudo chmod +x /opt/netdata/usr/libexec/netdata/netdata-updater.sh && sudo /opt/netdata/usr/libexec/netdata/netdata-updater.sh
Uninstall (non-debian package only)
sudo chmod +x /opt/netdata/usr/libexec/netdata/netdata-uninstaller.sh && sudo /opt/netdata/usr/libexec/netdata/netdata-uninstaller.sh
Matrix
