Skip to content
/ kdump Public

The nearly-reltime pcap analyser for dynamic network interfaces

5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

WoodProgrammer/kdump

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

56 Commits

.github/workflows

.github/workflows

 
 

dashboard

dashboard

 
 

docker

docker

 
 

img

img

 
 

k8s/tcp-exporter

k8s/tcp-exporter

 
 

tests

tests

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

main.go

main.go

 
 

prometheus.go

prometheus.go

 
 

Repository files navigation

tcp-exporter

example event parameter

This is a project that contains important tcp metrics like Retransmission, window scale, rst, ip_defragmentation ..etc

You are able to run this metric exporter in all the components which is interacting with network in anyhow.

This metric exporter is responsible to listen interfaces on the workload and produce metrics based on the analysis.

Table of Contents

How to deploy

Kubernetes

To deploy this tcp exporter you can follow up these commands show at below;

    pushd k8s
        helm upgrade -i <RELEASE-NAME> -f values.yaml .
    popd

This helm chart deploy a daemonset which is running in hostNetwork: true mode.This allows us to track all the activities of the interfaces in and out cluster connectivity.

Concept

As you can see the illustrated images this daemonsets fetches all the pcap data of each interface as you can image each data processing by the tcp-exporter and it produce analys for each pod interface and ip traffic as well.

Prometheus Metrics

Metrics example this metric exporter works like that;

    #!/bin/bash

    pushd tcp-exporter
        go build .
        ./tcpdump_exporter -p 9090 -i eni-123123 -f tcp
    popd

After you build and run this application it will start to produce metrics like that;

List of the Metrics

# TYPE duration_metric counter
duration_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>"} 3.0313016523275064e+18
...
..
.
# TYPE retransmission_metric counter
retransmission_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>",deviceName="<<NET_DEVICE_NAME>>" } 12
window_scale_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>", deviceName="<<NET_DEVICE_NAME>>",} 5.0
rst_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>", deviceName="<<NET_DEVICE_NAME>>",} 3.0
ip_df_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>", deviceName="<<NET_DEVICE_NAME>>",} 1.2
zerowindow_metric{dstIp="<<DST_IP_ADDR>>",srcIp="<<SRC_IP_ADDR>>", deviceName="<<NET_DEVICE_NAME>>",} 0.0
ip_packet_size{deviceName="<<NET_DEVICE_NAME>>",}
tcp_packet_size{deviceName="<<NET_DEVICE_NAME>>",}
packet_count{deviceName="<<NET_DEVICE_NAME>>",}

Grafana Dashboard

This is the example view of the Grafana dashboard of this project you can check the json model of the grafana dashboard under dashboard directory.

TODO;

  • Controller
  • Better dashboard

Contribution

All the feature and hotfix branches must to have get merged in pre-release branch after it get approval the changes can proceed to the master branch

About

The nearly-reltime pcap analyser for dynamic network interfaces

Topics

kubernetes golang aws monitoring metrics grafana prometheus prometheus-exporter wireshark bpf kuberentes

Resources

Readme
Activity

Stars

5 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages