| Table of Contents |
|---|
Monitoring
Qualys
...
Qualys is used by NCSA IT for vulnerability assessment and management. Qualys will require SSH access to any public-facing host or service. This will likely mean the loadbalancer host and Nginx ingress controller container.
- Create SSH keypair
- Open SSH access to NCSA Qualys server (IP)
- Create non-root user
- Install Qualys client?
Nagios
- Nagios
- Need to understand
- Where? AWS, TACC, ISDA instance
- Who gets notified?
- When does it run
Features:
- Public service monitoring
- Private service monitoring (CPU, memory, disk, logged in users)
Kube tools/Prometheus
- Kube tools/Prometheus
- Log aggregation
- Healthz on all services?
- Priorities
- Ingress - Nginx - using default backend 404
- Web UI / API (Kube API/Etcd availability)
- Kube system (GFS, etc)
- Openstack
- Backups
...