mirror of
https://codeberg.org/hyperreal/techne
synced 2024-11-01 14:23:06 +01:00
137 lines
4.3 KiB
Org Mode
137 lines
4.3 KiB
Org Mode
#+title: Grafana
|
|
#+setupfile: ../org-templates/page.org
|
|
|
|
** Install and deploy the Grafana server
|
|
On Fedora/RHEL systems:
|
|
#+BEGIN_SRC shell
|
|
sudo dnf install -y grafana grafana-selinux
|
|
#+END_SRC
|
|
|
|
On Debian systems:
|
|
#+BEGIN_SRC shell
|
|
sudo apt-get install -y apt-transport-https software-properties-common
|
|
sudo wget -q -O /usr/share/keyrings/grafana.key https://apt.grafana.com/gpg.key
|
|
echo "deb [signed-by=/usr/share/keyrings/grafana.key] https://apt.grafana.com stable main" | sudo tee -a /etc/apt/sources.list.d/grafana.list
|
|
sudo apt update
|
|
sudo apt install -y grafana
|
|
#+END_SRC
|
|
|
|
Reload the systemctl daemon, start and enable ~grafana.service~:
|
|
#+BEGIN_SRC shell
|
|
sudo systemctl daemon-reload
|
|
sudo systemctl enable --now grafana-server.service
|
|
sudo systemctl status grafana-server.service
|
|
#+END_SRC
|
|
|
|
** Configure Grafana SELinux policy
|
|
#+BEGIN_QUOTE
|
|
This is not necessary on AlmaLinux 9, Rocky Linux 9, RHEL 9.
|
|
#+END_QUOTE
|
|
|
|
For some reason the grafana-selinux package does not provide what Grafana needs to cooperate with SELinux. It's therefore necessary to use a third-party repository at [[https://github.com/georou/grafana-selinux]] to compile and install a proper SELinux policy module for Grafana.
|
|
#+BEGIN_SRC shell
|
|
# Clone the repo
|
|
git clone https://github.com/georou/grafana-selinux.git
|
|
cd grafana-selinux
|
|
|
|
# Copy relevant .if interface file to /usr/share/selinux/devel/include to expose them when building and for future modules.
|
|
# May need to use full path for grafana.if if not working.
|
|
install -Dp -m 0664 -o root -g root grafana.if /usr/share/selinux/devel/include/myapplications/grafana.if
|
|
|
|
# Compile and install the selinux module.
|
|
sudo dnf install -y selinux-policy-devel setools-console policycoreutils-devel
|
|
sudo make -f /usr/share/selinux/devel/Makefile grafana.pp
|
|
sudo semodule -i grafana.pp
|
|
|
|
# Add grafana ports
|
|
semanage port -a -t grafana_port_t -p tcp 3000
|
|
|
|
# Restore all the correct context labels
|
|
restorecon -RvF /usr/sbin/grafana-* \
|
|
/etc/grafana \
|
|
/var/log/grafana \
|
|
/var/lib/grafana \
|
|
/usr/share/grafana/bin
|
|
|
|
# Start grafana
|
|
systemctl start grafana-server.service
|
|
|
|
# Ensure it's working in the proper confinement
|
|
ps -eZ | grep grafana
|
|
#+END_SRC
|
|
|
|
Login to the [[http://localhost:3000][Grafana panel]].
|
|
- username: admin
|
|
- password: password (change this after)
|
|
|
|
** Add Prometheus data source
|
|
1. Bar menu
|
|
2. Data sources
|
|
3. Add new data source
|
|
4. Choose Prometheus data source
|
|
- Name: Prometheus
|
|
- URL: http://localhost:9090
|
|
5. Save & test
|
|
|
|
Ensure the data source is working before continuing.
|
|
|
|
If you're running Grafana on an SELinux host, set an SELinux boolean to allow Grafana to access the Prometheus port:
|
|
#+BEGIN_SRC shell
|
|
sudo setsebool -P grafana_can_tcp_connect_prometheus_port=1
|
|
#+END_SRC
|
|
|
|
** Add Loki data source
|
|
Since Loki is running on hyperreal.coffee:3100, the Firewall's internal zone on that host needs to allow connection to port ~3100~ from my IP address.
|
|
#+BEGIN_SRC shell
|
|
sudo firewall-cmd --zone=internal --permanent --add-port=3100/tcp
|
|
sudo firewall-cmd --reload
|
|
#+END_SRC
|
|
|
|
In the Grafana panel:
|
|
1. Bar menu
|
|
2. Data sources
|
|
3. Add new data source
|
|
4. Choose Loki data source
|
|
- Name: Loki
|
|
- URL: http://hyperreal.coffee:3100
|
|
5. Save & test
|
|
|
|
Ensure the data source is working before continuing.
|
|
|
|
** Add Node Exporter dashboard
|
|
:PROPERTIES:
|
|
:CUSTOM_ID: grafana:node
|
|
:END:
|
|
|
|
1. Visit the [[https://grafana.com/grafana/dashboards/][Grafana Dashboard Library]].
|
|
2. Search for "Node Exporter Full".
|
|
3. Copy the ID for Node Exporter Full.
|
|
4. Go to the Grafana panel bar menu.
|
|
5. Dashboards
|
|
6. New > Import
|
|
7. Paste the Node Exporter Full ID into the field, and press the Load button.
|
|
|
|
** Add Caddy dashboard
|
|
:PROPERTIES:
|
|
:CUSTOM_ID: grafana:caddy
|
|
:END:
|
|
|
|
1. Visit [[https://grafana.com/grafana/dashboards/20802-caddy-monitoring/][Caddy Monitoring]] on the Grafana Dashboard Library.
|
|
2. Copy the ID to clipboard.
|
|
3. Go to the Grafana panel bar menu.
|
|
4. Dashboards
|
|
5. New > Import
|
|
6. Paste the Caddy Monitoring ID into the field, and press the Load button.
|
|
|
|
** Add qBittorrent dashboard
|
|
:PROPERTIES:
|
|
:CUSTOM_ID: grafana:qbittorrent
|
|
:END:
|
|
|
|
1. Visit [[https://grafana.com/grafana/dashboards/15116-qbittorrent-dashboard/][qBittorrent Dashboard]] on Grafana Dashboard Library.
|
|
2. Copy the ID to clipboard.
|
|
3. Go to the Grafana panel bar menu.
|
|
4. Dashboards
|
|
5. New > Import
|
|
6. Paste the qBittorrent Dashboard ID into the field, and press the Load button.
|