open-falcon安装使用监控树莓派

February 6, 2018

简介

open-falcon是一款用golang和python写的监控系统，由小米启动这个项目。官方网址 http://open-falcon.org/ 文档 https://book.open-falcon.org/zh_0_2/ 今天我要安装的是0.2版本，监控的是树莓派。系统是阿里云ecs centos7.4

安装准备

安装redis yum install redis 启动redis服务 systemctl start redis 让redis开机自启 systemctl enable redis
安装mariadb yum install mariadb-server 启动mariadb服务 systemctl start mariadb 让mariadb开机启动 systemctl enable mariadb 初始化mariadb密码

[root@izuf6hyujh57q98bebkndoz ~]# mysql_secure_installation

NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MariaDB
      SERVERS IN PRODUCTION USE!  PLEASE READ EACH STEP CAREFULLY!

In order to log into MariaDB to secure it, we'll need the current
password for the root user.  If you've just installed MariaDB, and
you haven't set the root password yet, the password will be blank,
so you should just press enter here.

Enter current password for root (enter for none): 
ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES)
Enter current password for root (enter for none): 
OK, successfully used password, moving on...

Setting the root password ensures that nobody can log into the MariaDB
root user without the proper authorisation.

Set root password? [Y/n] y
New password: 
Re-enter new password: 
Password updated successfully!
Reloading privilege tables..
 ... Success!


By default, a MariaDB installation has an anonymous user, allowing anyone
to log into MariaDB without having to have a user account created for
them.  This is intended only for testing, and to make the installation
go a bit smoother.  You should remove them before moving into a
production environment.

Remove anonymous users? [Y/n] y
 ... Success!

Normally, root should only be allowed to connect from 'localhost'.  This
ensures that someone cannot guess at the root password from the network.

Disallow root login remotely? [Y/n] y
 ... Success!

By default, MariaDB comes with a database named 'test' that anyone can
access.  This is also intended only for testing, and should be removed
before moving into a production environment.

Remove test database and access to it? [Y/n] y
 - Dropping test database...
 ... Success!
 - Removing privileges on test database...
 ... Success!

Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.

Reload privilege tables now? [Y/n] y
 ... Success!

Cleaning up...

All done!  If you've completed all of the above steps, your MariaDB
installation should now be secure.

Thanks for using MariaDB!

我解释下上面每步都是做什么的 Enter current password for root (enter for none): 当你第一次运行时直接回车就好，就是问你原来的root密码是什么，因为第一次运行，所以直接回车就好 Set root password? [Y/n] y 问你是不是设置root密码 Remove anonymous users? [Y/n] y 问你是不是移除匿名用户 Disallow root login remotely? [Y/n] y 禁止root远程登录 Remove test database and access to it? [Y/n] y 移除test数据库 Reload privilege tables now? [Y/n] y 重新加载权限表最后运行mysql -uroot -p登入mariadb验证下

导入open-falcon数据表 安装git yum install git 下载falcon-plus里面有open-falcon的数据库导入就好 git clone https://github.com/open-falcon/falcon-plus.git 进入下面这个目录，然后执行下面命令 cd /root/falcon-plus/scripts/mysql/db_schema mysql -h 127.0.0.1 -u root -p < 1_uic-db-schema.sql mysql -h 127.0.0.1 -u root -p < 2_portal-db-schema.sql mysql -h 127.0.0.1 -u root -p < 3_dashboard-db-schema.sql mysql -h 127.0.0.1 -u root -p < 4_graph-db-schema.sql mysql -h 127.0.0.1 -u root -p < 5_alarms-db-schema.sql

之后你会发现数据库中多出了下面这些数据库

+--------------------+
| Database           |
+--------------------+
| information_schema |
| alarms             |
| dashboard          |
| falcon_portal      |
| graph              |
| mysql              |
| performance_schema |
| uic                |
+--------------------+

下载open-falcon的安装包

如果你是其他平台的比如arm或是32位系统的要自己编译下，我就直接使用二进制包安装好了 wget https://github.com/open-falcon/falcon-plus/releases/download/v0.2.1/open-falcon-v0.2.1.tar.gz 因为网速较慢所以建议本地挂代理下载之后上传到服务器上

启动后端

因为是编译好的包，所以我们就不需要各种复杂的设置了，直接启动就好了我把所有文件放在home文件夹中work下 mkdir -p /home/work/open-falcon tar -zxvf open-falcon-v0.2.1.tar.gz -C /home/work/open-falcon/ 修改配置文件，其实就是修改所有组件的cfg.json的mariadb密码，我的意思是如果这个组件用到mariadb的话首先修改aggregator的 vim /home/work/open-falcon/aggregator/config/cfg.json 改为

    "database": {
        "addr": "root:Yuncan1803@tcp(127.0.0.1:3306)/falcon_portal?loc=Local&parseTime=true",
        "idle": 10,
        "ids": [1, -1],
        "interval": 55
    },

注意第二行Yuncan1803是密码，root是用户名其他的都一样接着修改graph的 vim graph/config/cfg.json

    "db": {
        "dsn": "root:Yuncan1803@tcp(127.0.0.1:3306)/graph?loc=Local&parseTime=true",
        "maxIdle": 4
    },

修改hbs的 vim hbs/config/cfg.json

{
    "debug": true,
    "database": "root:Yuncan1803@tcp(127.0.0.1:3306)/falcon_portal?loc=Local&parseTime=true",
    "hosts": "",
    "maxConns": 20,
    "maxIdle": 15,
    "listen": ":6030",
    "trustable": [""],
    "http": {
        "enabled": true,
        "listen": "0.0.0.0:6031"
    }
}

修改nodata的 vim nodata/config/cfg.json

    "config": {
        "enabled": true,
        "dsn": "root:Yuncan1803@tcp(127.0.0.1:3306)/falcon_portal?loc=Local&parseTime=true&wait_timeout=604800",
        "maxIdle": 4
    },

修改api的 vim api/config/cfg.json

        "db": {
                "falcon_portal": "root:Yuncan1803@tcp(127.0.0.1:3306)/falcon_portal?charset=utf8&parseTime=True&loc=Local",
                "graph": "root:Yuncan1803@tcp(127.0.0.1:3306)/graph?charset=utf8&parseTime=True&loc=Local",
                "uic": "root:Yuncan1803@tcp(127.0.0.1:3306)/uic?charset=utf8&parseTime=True&loc=Local",
                "dashboard": "root:Yuncan1803@tcp(127.0.0.1:3306)/dashboard?charset=utf8&parseTime=True&loc=Local",
                "alarms": "root:Yuncan1803@tcp(127.0.0.1:3306)/alarms?charset=utf8&parseTime=True&loc=Local",
                "db_bug": true
        },

修改alarm的 vim alarm/config/cfg.json

    "falcon_portal": {
        "addr": "root:Yuncan1803@tcp(127.0.0.1:3306)/alarms?charset=utf8&loc=Asia%2FChongqing",
        "idle": 10,
        "max": 100
    },

最好，终于他妈最后了，启动后端 ./open-falcon start 你可以用下面的命令检查所有组件的状态 ./open-falcon check

[root@izuf6hyujh57q98bebkndoz open-falcon]# ./open-falcon check
        falcon-graph         UP           27849 
          falcon-hbs         UP           27858 
        falcon-judge         UP           27868 
     falcon-transfer         UP           27876 
       falcon-nodata         UP           27883 
   falcon-aggregator         UP           27891 
        falcon-agent         UP           27901 
      falcon-gateway         UP           27908 
          falcon-api         UP           27915 
        falcon-alarm         UP           27929

安装前端

首先把代码clone下来 cd /home/work/open-falcon git clone https://github.com/open-falcon/dashboard.git 安装依赖包 yum install -y python-virtualenv yum install -y python-devel yum install -y openldap-devel yum install -y mysql-devel yum groupinstall "Development tools"

新建虚拟环境 cd dashboard virtualenv ./env 安装python依赖 ./env/bin/pip install -r pip_requirements.txt 修改配置 vim rrd/config.py PORTAL_DB_PASS = os.environ.get("PORTAL_DB_PASS","Yuncan1803") ALARM_DB_PASS = os.environ.get("ALARM_DB_PASS","Yuncan1803") 在生产环境启动

[root@izuf6hyujh57q98bebkndoz dashboard]# bash control start
falcon-dashboard started..., pid=8190

下面是一些其他操作开发者模式启动 ./env/bin/python wsgi.py

停止 bash control stop

查看日志 bash control tail

账号管理

首先我们用ip:8081访问open-falcon，接着要知道的是falcon默认没有任何用户，新建的第一个root用户就是管理员，为了安全你可以修改api组件的配置文件 vim api/config/cfg.json 中的 "signup_disable": false, 设置为true就可以禁止注册了

树莓派上安装

这个肯定是要编译的了，所以先下载golang安装因为实在树莓派下，所以golang要编译安装，但是现在最新版本的golang都是用go编译的，所以因为我们系统中没有go，只能先安装1.4版本的c语言版本go，之后安装最新版本的go 首先下载 wget https://dl.google.com/go/go1.4.3.src.tar.gz 解压 tar -zxvf go1.4.3.src.tar.gz 编译 cd go/src ./make.bash 因为是树莓派所以编译肯定花点时间移动go到/root/go1.4 mv go /root/go1.4 /root/go1.4是默认$GOROOT_BOOTSTRAP的值接着下载最新版本的go wget https://dl.google.com/go/go1.9.3.src.tar.gz 解压 tar -zxvf go1.9.3.src.tar.gz 编译 cd go/src ./make.bash 编译好后接着移动到/usr/local/目录下 mv go /usr/local 设置环境变量 vim ~/.zshrc

export GOROOT=/usr/local/go
export GOPATH=/root/go
export PATH=$PATH:GOROOT/bin

使环境变量生效 source ~/.zshrc

接着编译安装open-falcon的agent 新建一个目录下载源码 mkdir -p $GOPATH/src/github.com/open-falcon cd $GOPATH/src/github.com/open-falcon 下载源码 git clone https://github.com/open-falcon/falcon-plus.git 进入agent源码目录 cd falcon-plus/modules/agent 下载依赖 go get 编译 ./control build 接着把agent这个文件夹放入/usr/loca/目录 mv agent /usr/local 启动agent生成配置文件 cd /usr/local/agent ./control start 编辑配置文件

{
    "debug": true,
    "hostname": "raspberry",
    "ip": "",
    "plugin": {
        "enabled": false,
        "dir": "./plugin",
        "git": "https://github.com/open-falcon/plugin.git",
        "logs": "./logs"
    },
    "heartbeat": {
        "enabled": true,
        "addr": "ip:6030",
        "interval": 60,
        "timeout": 1000
    },
    "transfer": {
        "enabled": true,
        "addrs": [
            "ip:8433"
        ],
        "interval": 60,
        "timeout": 1000
    },
    "http": {
        "enabled": true,
        "listen": ":1988",
        "backdoor": false
    },
    "collector": {
        "ifacePrefix": ["eth", "em"],
        "mountPoint": []
    },
    "default_tags": {
    },
    "ignore": {
        "cpu.busy": true,
        "df.bytes.free": true,
        "df.bytes.total": true,
        "df.bytes.used": true,
        "df.bytes.used.percent": true,
        "df.inodes.total": true,
        "df.inodes.free": true,
        "df.inodes.used": true,
        "df.inodes.used.percent": true,
        "mem.memtotal": true,
        "mem.memused": true,
        "mem.memused.percent": true,
        "mem.memfree": true,
        "mem.swaptotal": true,
        "mem.swapused": true,
        "mem.swapfree": true
    }
}

重启 ./control restart 和zabbix比起来这个配置真的少了很多，除了HOSTNAME以外就是ip要改，而且挺简单的，dashboard上也不用设置，等会就会有数据出来

欢迎关注我的博客www.bboy.app Have Fun

Bboysoul's Blog