0c45a88561
All checks were successful
build configuration / build_rescue01 (push) Successful in 1m5s
build configuration / build_web02 (push) Successful in 1m5s
build configuration / build_vault01 (push) Successful in 1m8s
build configuration / build_storage01 (push) Successful in 1m12s
build configuration / build_compute01 (push) Successful in 1m15s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m34s
build configuration / push_to_cache (push) Successful in 2m10s
82 lines
1.7 KiB
Nix
82 lines
1.7 KiB
Nix
{
|
|
config,
|
|
nodes,
|
|
lib,
|
|
...
|
|
}:
|
|
|
|
let
|
|
host = "prometheus.dgnum.eu";
|
|
port = 9091;
|
|
|
|
nodeExporterConfigs = lib.flatten (
|
|
lib.mapAttrsToList (
|
|
node:
|
|
{ config, ... }:
|
|
lib.optional config.dgn-node-monitoring.enable {
|
|
targets = [ "${node}.dgnum:${builtins.toString config.dgn-node-monitoring.port}" ];
|
|
labels = {
|
|
host = node;
|
|
};
|
|
}
|
|
) nodes
|
|
);
|
|
in
|
|
|
|
{
|
|
services.prometheus = {
|
|
enable = true;
|
|
|
|
inherit port;
|
|
|
|
checkConfig = "syntax-only";
|
|
enableReload = true;
|
|
|
|
listenAddress = "127.0.0.1";
|
|
|
|
webConfigFile = config.age.secrets."prometheus-web_config_file".path;
|
|
|
|
webExternalUrl = "https://${host}";
|
|
|
|
retentionTime = "1y";
|
|
|
|
extraFlags = [ "--storage.tsdb.retention.size=20GB" ];
|
|
|
|
globalConfig = {
|
|
scrape_interval = "15s"; # if you change this settings, please do it in grafana also
|
|
};
|
|
|
|
scrapeConfigs = [
|
|
{
|
|
job_name = "prometheus";
|
|
static_configs = [ { targets = [ "localhost:9090" ]; } ];
|
|
}
|
|
{
|
|
job_name = "node_exporter";
|
|
static_configs = nodeExporterConfigs;
|
|
}
|
|
{
|
|
job_name = "uptime_kuma";
|
|
scheme = "https";
|
|
static_configs = [ { targets = [ "status.dgnum.eu" ]; } ];
|
|
basic_auth = {
|
|
username = "prometheus";
|
|
password_file = config.age.secrets."prometheus-uptime-kuma-apikey".path;
|
|
};
|
|
}
|
|
];
|
|
};
|
|
|
|
services.nginx.virtualHosts.${host} = {
|
|
enableACME = true;
|
|
forceSSL = true;
|
|
|
|
locations."/" = {
|
|
proxyPass = "http://127.0.0.1:${builtins.toString port}";
|
|
proxyWebsockets = true;
|
|
recommendedProxySettings = true;
|
|
};
|
|
};
|
|
|
|
age-secrets.autoMatch = [ "prometheus" ];
|
|
}
|