Monitoring
STUNner can export various statistics into an external timeseries database like Prometheus. This allows observing the state of a STUNner gateway instance (such as CPU usage, memory consumption, and the volume of data received and sent) in near real-time. These statistics can then be presented to the operator in a monitoring dashboard using, e.g., Grafana.
Configuration
Metrics collection is not enabled by default. To enable it, set the enableMetricsEndpoint field to true in the Dataplane template. This will configure the stunnerd dataplane pods to expose an HTTP metrics endpoint on port 8080 that Prometheus can scrape for metrics.
Metrics
STUNner exports two types of metrics: the Go collector metrics describe the state of the Go runtime, while the Connection statistics expose traffic monitoring data.
Go collector metrics
Each STUNner gateway instance exports a number of standard metrics that describe the state of the current Go process. Some notable metrics as listed below, see more in the documentation.
| Metric | Description |
|---|---|
process_cpu_seconds_total |
Total user and system CPU time spent in seconds. |
go_memstats_alloc_bytes |
Number of bytes allocated and still in use. |
go_goroutines |
Number of goroutines that currently exist. |
go_threads |
Number of OS threads created. |
process_open_fds |
Number of open file descriptors. |
process_resident_memory_bytes |
Resident memory size in bytes. |
process_virtual_memory_bytes |
Virtual memory size in bytes. |
Connection statistics
STUNner provides deep visibility into the amount of traffic sent and received on each listener (downstream connections) and cluster (upstream connections). The particular metrics are as follows.
| Metric | Description | Type | Labels |
|---|---|---|---|
stunner_allocations_active |
Number of active allocations. | gauge | none |
stunner_listener_connections |
Number of active downstream connections at a listener. Stays constant when using only UDP listeners. | gauge | name=<listener-name> |
stunner_listener_connections_total |
Number of downstream connections at a listener. | counter | name=<listener-name> |
stunner_listener_packets_total |
Number of datagrams sent or received at a listener. Unreliable for listeners running on a connection-oriented transport protocol (TCP/TLS). | counter | direction=<rx\|tx>, name=<listener-name> |
stunner_listener_bytes_total |
Number of bytes sent or received at a listener. | counter | direction=<rx\|tx>, name=<listener-name> |
stunner_cluster_packets_total |
Number of datagrams sent to backends or received from backends of a cluster. Unreliable for clusters running on a connection-oriented transport protocol (TCP/TLS). | counter | direction=<rx\|tx>, name=<cluster-name> |
stunner_cluster_bytes_total |
Number of bytes sent to backends or received from backends of a cluster. | counter | direction=<rx\|tx>, name=<cluster-name> |
Integration with Prometheus
Collection and visualization of STUNner relies on Prometheus and Grafana services. Your cluster might already have these services installed. If not, a recommended option is to install the kube-prometheus-stack.
Configuration
The STUNner monitoring configuration steps involve enabling monitoring in STUNner, and installing the Prometheus+Grafana components.
- Install stunner-gateway-operator with Prometheus support:
helm install stunner stunner/stunner --create-namespace --namespace=stunner-system --set stunnerGatewayOperator.dataplane.spec.enableMetricsEndpoint=trueAlternatively, you can enable it on existing installations by setting enableMetricsEndpoint: true in your Dataplane objects.
Note
Metrics are exposed at http://:8080/metrics on each STUNner pod
- Install the Prometheus PodMonitor
The below creates a Prometheus PodMonitor object in the monitoring namespace. Replace kube-prometheus-stack with your Prometheus helm release name.
apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:
name: stunner-podmonitor
labels:
metrics: stunner
release: kube-prometheus-stack
namespace: monitoring
spec:
podMetricsEndpoints:
- honorLabels: true
interval: 5s
port: metrics-port
path: /metrics
selector:
matchLabels:
app: stunner
namespaceSelector:
matchNames:
- stunner
- stunner-system
- default- Add a Grafana dashboard
As an example, let us plot the STUNner metric stunner_listener_connections. The first step, after logging in to Grafana, is to create a new panel, then to configure the plot parameters.
Click on Add panel (1), then Add a new panel (2):
The Add a new panel will open the panel configuration. The configuration steps are the following.
- Set the datasource: prometheus.
- Choose a metric. In this example, this is the
stunner_listener_connections. - Click on Run queries (this will update the figure).
- Fine-tune plot parameters. For example, set the title.
- Click Apply.
The expected outcome is a new panel on the dashboard showing the stunner_listener_connections metric.
Below is an example dashboard with data collected from the simple-tunnel example:
Troubleshooting
Prometheus and Grafana each provide dashboards to help troubleshoot a running system and verify that metrics flow correctly from STUNner to Prometheus to Grafana.
The Prometheus dashboard is available at the prometheus service address (see the kube-prometheus-stack documentation for the correct access method based on your deployment). From there you can inspect the running Prometheus configuration and test metrics collection.
For example, to observe the stunner_listener_connections metric on the Prometheus dashboard:
- Enter
stunner_listener_connectionsinto the query input field (next to the search icon). - Click on the
Executebutton. - Switch to
Graphview tab.
Note that some STUNner metrics may not be available when they are inactive (e.g., there is no active cluster).
To check the Prometheus data source in Grafana, first click on Configuration (1), then Data sources (2), as shown here:
This will open up the datasources page. Scroll down to the bottom, click button Save & test (1), and observe the datasource is working (2):
