Prometheus+Alertmanager+webhook-dingtalk实现钉钉告警

文章目录

一、前提准备及规划

二、安装及启动

2.1 Prometheus安装启动

2.2 Node_export安装启动

2.3 Alertmanager安装启动

2.4 Webhook-dingtalk安装启动

三、配置及测试

3.1 Webhook-dingtalk配置钉钉webhook地址

3.2 Alertmanager配置钉钉告警

3.3 Prometheus集成Alertmanager及告警规则配置

四、测试告警

 

 

一、前提准备及规划

1、服务端口规划：

 

 Prometheus    Node_exporter   Alertanager   Webhook-dingtalk   

 

59090           59100               9093              8060

 

 

 

创建钉钉机器人

 

 

 

 

 

 二、安装及启动

安装配置只涉及到安装及正常启动无误，并不涉及配置内容！

创建 /usr/local/prometheus 目录，设计到所有安装的服务，咱们都放到此目录中。

mkdir /usr/local/prometheus

 

 配置时间同步 && 定时同步

yum -y install ntpdate
ntpdate ntp1.aliyun.com

echo "0 1 * * * ntpdate ntp1.aliyun.com" >> /var/spool/cron/root
crontab -l

2.1 Prometheus安装启动

wget https://github.com/prometheus/prometheus/releases/download/v2.42.0/prometheus-2.42.0.linux-amd64.tar.gz

tar zxf prometheus-2.42.0.linux-amd64.tar.gz 
mv prometheus-2.42.0.linux-amd64 /usr/local/prometheus/prometheus

配置Prometheus使用systemd管理

vim /usr/lib/systemd/system/prometheus.service

[Unit]
Description=Prometheus-Server
Documentation=https://prometheus.io/
After=network.target

[Service]
ExecStart=/usr/local/prometheus/prometheus/prometheus --web.listen-address=0.0.0.0:59090  --config.file=/usr/local/prometheus/prometheus/prometheus.yml 
User=root

[Install]
WantedBy=multi-user.target

 

启动 && 开机自启

systemctl enable prometheus --now
systemctl status prometheus

浏览器访问 http://IP：59090，显示下图表示无误~

  Node_export安装启动

 

安装node_export

wget https://github.com/prometheus/node_exporter/releases/download/v1.5.0/node_exporter-1.5.0.linux-amd64.tar.gz

tar zxf node_exporter-1.5.0.linux-amd64.tar.gz
mv node_exporter-1.5.0.linux-amd64 /usr/local/prometheus/node_exporter

 

配置node_exporter使用systemd管理

vim /usr/lib/systemd/system/node_exporter.service

[Unit]
Description=Prometheus-Server
After=network.target

[Service]
ExecStart=/usr/local/prometheus/node_exporter/node_exporter --web.listen-address=0.0.0.0:59100
User=root

[Install]
WantedBy=multi-user.target

 

启动 && 开机自启

systemctl enable node_exporter --now
systemctl status node_exporter

 

验证 浏览器查看 收集数据信息

浏览器访问 http://IP:59100/metrics，显示下图表示无误~

 

Alertmanager安装启动

wget https://github.com/prometheus/alertmanager/releases/download/v0.25.0-rc.2/alertmanager-0.25.0-rc.2.linux-amd64.tar.gz

tar zxf alertmanager-0.25.0-rc.2.linux-amd64.tar.gz 
mv alertmanager-0.25.0-rc.2.linux-amd64 /usr/local/prometheus/alertmanager

配置Alertmanager使用systemd管理

vim /usr/lib/systemd/system/alertmanager.service

[Unit]
Description=Prometheus-Server
After=network.target

[Service]
ExecStart=/usr/local/prometheus/alertmanager/alertmanager --cluster.advertise-address=0.0.0.0:59093 --config.file=/usr/local/prometheus/alertmanager/alertmanager.yml
User=root

[Install]
WantedBy=multi-user.target

启动 && 开机自启

systemctl enable alertmanager --now
systemctl status alertmanager

验证 浏览器访问alertmanager管理页面

浏览器访问 http://IP:9093，显示下图表示无误~

 

 

 

 Webhook-dingtalk安装启动

 

安装webhook-dingtalk插件

wget https://github.com/timonwong/prometheus-webhook-dingtalk/releases/download/v2.1.0/prometheus-webhook-dingtalk-2.1.0.linux-amd64.tar.gz

tar zxf prometheus-webhook-dingtalk-2.1.0.linux-amd64.tar.gz 
mv prometheus-webhook-dingtalk-2.1.0.linux-amd64 /usr/local/prometheus/webhook-dingtalk

配置webhook-dingtalk使用systemd管理

cp /usr/local/prometheus/webhook-dingtalk/config.example.yml /usr/local/prometheus/webhook-dingtalk/config.yml
vim /usr/lib/systemd/system/webhook.service

[Unit]
Description=Prometheus-Server
After=network.target

[Service]
ExecStart=/usr/local/prometheus/webhook-dingtalk/prometheus-webhook-dingtalk --config.file=/usr/local/prometheus/webhook-dingtalk/config.yml
User=root

[Install]
WantedBy=multi-user.target

启动 && 开机自启

 

systemctl enable webhook.service --now
systemctl status webhook.service

 

验证，查看端口是否启动

netstat -anput |grep 8060

配置及测试

Webhook-dingtalk配置钉钉webhook地址

 Webhook-dingtalk配置相对比较简单，只改以下三处即可，如下图：

加签秘钥、webhook地址是咱们在钉钉创建机器人时获取的！

vim /usr/local/prometheus/webhook-dingtalk/config.yml

 

 

添加钉钉报警模板

 

vim /usr/local/prometheus/webhook-dingtalk/template.tmpl

{{ define "__subject" }}
[{{ .Status | toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing | len }}{{ end }}]
{{ end }}
 
 
{{ define "__alert_list" }}{{ range . }}
---
{{ if .Labels.owner }}@{{ .Labels.owner }}{{ end }}
 
**告警主题**: {{ .Annotations.summary }}

**告警类型**: {{ .Labels.alertname }}
 
**告警级别**: {{ .Labels.severity }} 
 
**告警主机**: {{ .Labels.instance }} 
 
**告警信息**: {{ index .Annotations "description" }}
 
**告警时间**: {{ dateInZone "2006.01.02 15:04:05" (.StartsAt) "Asia/Shanghai" }}
{{ end }}{{ end }}
 
{{ define "__resolved_list" }}{{ range . }}
---
{{ if .Labels.owner }}@{{ .Labels.owner }}{{ end }}

**告警主题**: {{ .Annotations.summary }}

**告警类型**: {{ .Labels.alertname }} 
 
**告警级别**: {{ .Labels.severity }}
 
**告警主机**: {{ .Labels.instance }}
 
**告警信息**: {{ index .Annotations "description" }}
 
**告警时间**: {{ dateInZone "2006.01.02 15:04:05" (.StartsAt) "Asia/Shanghai" }}
 
**恢复时间**: {{ dateInZone "2006.01.02 15:04:05" (.EndsAt) "Asia/Shanghai" }}
{{ end }}{{ end }}
 
 
{{ define "default.title" }}
{{ template "__subject" . }}
{{ end }}
 
{{ define "default.content" }}
{{ if gt (len .Alerts.Firing) 0 }}
**====侦测到{{ .Alerts.Firing | len  }}个故障====**
{{ template "__alert_list" .Alerts.Firing }}
---
{{ end }}
 
{{ if gt (len .Alerts.Resolved) 0 }}
**====恢复{{ .Alerts.Resolved | len  }}个故障====**
{{ template "__resolved_list" .Alerts.Resolved }}
{{ end }}
{{ end }}
 
 
{{ define "ding.link.title" }}{{ template "default.title" . }}{{ end }}
{{ define "ding.link.content" }}{{ template "default.content" . }}{{ end }}
{{ template "default.title" . }}
{{ template "default.content" . }}

 

重启

systemctl restart webhook
systemctl status webhook

Alertmanager配置钉钉告警

 

vim /usr/local/prometheus/alertmanager/alertmanager.yml

route:
  group_by: ['dingding']
  group_wait: 30s
  group_interval: 1h
  repeat_interval: 1h
  receiver: 'dingding.webhook1'
  routes:
  - receiver: 'dingding.webhook1'
    match_re:
      alertname: ".*"
receivers:
  - name: 'dingding.webhook1'
    webhook_configs:
    - url: 'http://16.32.15.200:8060/dingtalk/webhook1/send'
      send_resolved: true
inhibit_rules:
  - source_match:
      severity: 'critical'
    target_match:
      severity: 'warning'
    equal: ['alertname', 'dev', 'instance']

 

 

 

systemctl restart alertmanager
systemctl status alertmanager

 Prometheus集成Alertmanager及告警规则配置

 

vim /usr/local/prometheus/prometheus/prometheus.yml

global:
  scrape_interval: 15s 
  evaluation_interval: 15s 

alerting:
  alertmanagers:
    - static_configs:
        - targets:
           - 16.32.15.200:9093

rule_files:
   - "/usr/local/prometheus/prometheus/rule/node_exporter.yml"

scrape_configs:
  - job_name: "VMware-16.32.15.200"
    static_configs:
      - targets: ["16.32.15.200:59100"]

 

 

添加node_exporter告警规则

 

mkdir /usr/local/prometheus/prometheus/rule
vim /usr/local/prometheus/prometheus/rule/node_exporter.yml

groups:
- name: 服务器资源监控
  rules:
  - alert: 内存使用率过高
    expr: 100 - (node_memory_MemAvailable_bytes / node_memory_MemTotal_bytes) * 100 > 80
    for: 3m 
    labels:
      severity: 严重告警
    annotations:
      summary: "{{ $labels.instance }} 内存使用率过高, 请尽快处理！"
      description: "{{ $labels.instance }}内存使用率超过80%,当前使用率{{ $value }}%."
          
  - alert: 服务器宕机
    expr: up == 0
    for: 1s
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.instance}} 服务器宕机, 请尽快处理!"
      description: "{{$labels.instance}} 服务器延时超过3分钟,当前状态{{ $value }}. "
 
  - alert: CPU高负荷
    expr: 100 - (avg by (instance,job)(irate(node_cpu_seconds_total{mode="idle"}[5m])) * 100) > 90
    for: 5m
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.instance}} CPU使用率过高,请尽快处理！"
      description: "{{$labels.instance}} CPU使用大于90%,当前使用率{{ $value }}%. "
      
  - alert: 磁盘IO性能
    expr: avg(irate(node_disk_io_time_seconds_total[1m])) by(instance,job)* 100 > 90
    for: 5m
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.instance}} 流入磁盘IO使用率过高,请尽快处理！"
      description: "{{$labels.instance}} 流入磁盘IO大于90%,当前使用率{{ $value }}%."
 
 
  - alert: 网络流入
    expr: ((sum(rate (node_network_receive_bytes_total{device!~'tap.*|veth.*|br.*|docker.*|virbr*|lo*'}[5m])) by (instance,job)) / 100) > 102400
    for: 5m
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.instance}} 流入网络带宽过高，请尽快处理！"
      description: "{{$labels.instance}} 流入网络带宽持续5分钟高于100M. RX带宽使用量{{$value}}."
 
  - alert: 网络流出
    expr: ((sum(rate (node_network_transmit_bytes_total{device!~'tap.*|veth.*|br.*|docker.*|virbr*|lo*'}[5m])) by (instance,job)) / 100) > 102400
    for: 5m
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.instance}} 流出网络带宽过高,请尽快处理！"
      description: "{{$labels.instance}} 流出网络带宽持续5分钟高于100M. RX带宽使用量{$value}}."
  
  - alert: TCP连接数
    expr: node_netstat_Tcp_CurrEstab > 10000
    for: 2m
    labels:
      severity: 严重告警
    annotations:
      summary: " TCP_ESTABLISHED过高！"
      description: "{{$labels.instance}} TCP_ESTABLISHED大于100%,当前使用率{{ $value }}%."
 
  - alert: 磁盘容量
    expr: 100-(node_filesystem_free_bytes{fstype=~"ext4|xfs"}/node_filesystem_size_bytes {fstype=~"ext4|xfs"}*100) > 90
    for: 1m
    labels:
      severity: 严重告警
    annotations:
      summary: "{{$labels.mountpoint}} 磁盘分区使用率过高，请尽快处理！"
      description: "{{$labels.instance}} 磁盘分区使用大于90%，当前使用率{{ $value }}%."

 

systemctl restart prometheus
systemctl status prometheus

访问Prometheus Web页面可以查看到添加的规则，如下图：

 测试告警

、故意将node_exporter停止掉，模拟服务器宕机

systemctl stop node_exporter

 

 

Prometheus会将告警信息发送给Alertmanager，所以说Alertmanager页面可以看到告警信息如下图：

 

 

 

转发链接    https://blog.51cto.com/u_14304225/6401604

 

文章目录一、前提准备及规划二、安装及启动2.1 Prometheus安装启动2.2 Node_export安装启动2.3 Alertmanager安装启动2.4 Webhook-dingtalk安装启动三、配置及测试3.1 Webhook-dingtalk配置钉钉webhook地址3.2 Alertmanager配置钉钉告警3.3 Prometheus集成Alertmanager及告警规则配置四、测试告警

一、前提准备及规划1、服务端口规划：
服务
端口
Prometheus
59090
Node_exporter
59100
Alertanager
9093
Webhook-dingtalk
8060
2、本次实验架构调用图如下：


3、钉钉创建机器人保存Webhook地址：










总共需要保存两项，我们后续会用到：
1、加签后的秘钥
2、webhook地址
二、安装及启动安装配置只涉及到安装及正常启动无误，并不涉及配置内容！创建 /usr/local/prometheus 目录，设计到所有安装的服务，咱们都放到此目录中。
mkdir /usr/local/prometheus1.配置时间同步 && 定时同步
yum -y install ntpdatentpdate ntp1.aliyun.com
echo "0 1 * * * ntpdate ntp1.aliyun.com" >> /var/spool/cron/rootcrontab -l1.2.3.4.5.2.1 Prometheus安装启动1、安装Prometheus
 官方下载地址：
wget https://github.com/prometheus/prometheus/releases/download/v2.42.0/prometheus-2.42.0.linux-amd64.tar.gz
tar zxf prometheus-2.42.0.linux-amd64.tar.gz mv prometheus-2.42.0.linux-amd64 /usr/local/prometheus/prometheus1.2.3.4.2、配置Prometheus使用systemd管理
vim /usr/lib/systemd/system/prometheus.service
[Unit]Description=Prometheus-ServerDocumentation=https://prometheus.io/After=network.target
[Service]ExecStart=/usr/local/prometheus/prometheus/prometheus --web.listen-address=0.0.0.0:59090  --config.file=/usr/local/prometheus/prometheus/prometheus.yml User=root
[Install]WantedBy=multi-user.target1.2.3.4.5.6.7.8.9.10.11.12.13.3、启动 && 开机自启
systemctl enable prometheus --nowsystemctl status prometheus1.2.4、验证
浏览器访问 http://IP：59090，显示下图表示无误~


2.2 Node_export安装启动1、安装node_export
 官方下载地址：
wget https://github.com/prometheus/node_exporter/releases/download/v1.5.0/node_exporter-1.5.0.linux-amd64.tar.gz
tar zxf node_exporter-1.5.0.linux-amd64.tar.gzmv node_exporter-1.5.0.linux-amd64 /usr/local/prometheus/node_exporter1.2.3.4.2、配置node_exporter使用systemd管理
vim /usr/lib/systemd/system/node_exporter.service
[Unit]Description=Prometheus-ServerAfter=network.target
[Service]ExecStart=/usr/local/prometheus/node_exporter/node_exporter --web.listen-address=0.0.0.0:59100User=root
[Install]WantedBy=multi-user.target1.2.3.4.5.6.7.8.9.10.11.12.3、启动 && 开机自启
systemctl enable node_exporter --nowsystemctl status node_exporter1.2.4、验证 浏览器查看 收集数据信息
浏览器访问 http://IP:59100/metrics，显示下图表示无误~


2.3 Alertmanager安装启动1、安装Altermanager
 官方下载地址：
wget https://github.com/prometheus/alertmanager/releases/download/v0.25.0-rc.2/alertmanager-0.25.0-rc.2.linux-amd64.tar.gz
tar zxf alertmanager-0.25.0-rc.2.linux-amd64.tar.gz mv alertmanager-0.25.0-rc.2.linux-amd64 /usr/local/prometheus/alertmanager1.2.3.4.2、配置Alertmanager使用systemd管理
vim /usr/lib/systemd/system/alertmanager.service
[Unit]Description=Prometheus-ServerAfter=network.target
[Service]ExecStart=/usr/local/prometheus/alertmanager/alertmanager --cluster.advertise-address=0.0.0.0:59093 --config.file=/usr/local/prometheus/alertmanager/alertmanager.ymlUser=root
[Install]WantedBy=multi-user.target1.2.3.4.5.6.7.8.9.10.11.12.3、启动 && 开机自启
systemctl enable alertmanager --nowsystemctl status alertmanager1.2.4、验证 浏览器访问alertmanager管理页面
浏览器访问 http://IP:9093，显示下图表示无误~


2.4 Webhook-dingtalk安装启动1、安装webhook-dingtalk插件 下载地址:
wget https://github.com/timonwong/prometheus-webhook-dingtalk/releases/download/v2.1.0/prometheus-webhook-dingtalk-2.1.0.linux-amd64.tar.gz
tar zxf prometheus-webhook-dingtalk-2.1.0.linux-amd64.tar.gz mv prometheus-webhook-dingtalk-2.1.0.linux-amd64 /usr/local/prometheus/webhook-dingtalk1.2.3.4.2、配置webhook-dingtalk使用systemd管理
cp /usr/local/prometheus/webhook-dingtalk/config.example.yml /usr/local/prometheus/webhook-dingtalk/config.ymlvim /usr/lib/systemd/system/webhook.service
[Unit]Description=Prometheus-ServerAfter=network.target
[Service]ExecStart=/usr/local/prometheus/webhook-dingtalk/prometheus-webhook-dingtalk --config.file=/usr/local/prometheus/webhook-dingtalk/config.ymlUser=root
[Install]WantedBy=multi-user.target1.2.3.4.5.6.7.8.9.10.11.12.13.3、启动 && 开机自启
systemctl enable webhook.service --nowsystemctl status webhook.service1.2.4、验证，查看端口是否启动
netstat -anput |grep 80601.三、配置及测试3.1 Webhook-dingtalk配置钉钉webhook地址1、 Webhook-dingtalk配置相对比较简单，只改以下三处即可，如下图：加签秘钥、webhook地址是咱们在钉钉创建机器人时获取的！
vim /usr/local/prometheus/webhook-dingtalk/config.yml1.



2、添加钉钉报警模板
vim /usr/local/prometheus/webhook-dingtalk/template.tmpl
{{ define "__subject" }}[{{ .Status | toUpper }}{{ if eq .Status "firing" }}:{{ .Alerts.Firing | len }}{{ end }}]{{ end }}  {{ define "__alert_list" }}{{ range . }}---{{ if .Labels.owner }}@{{ .Labels.owner }}{{ end }} **告警主题**: {{ .Annotations.summary }}
**告警类型**: {{ .Labels.alertname }} **告警级别**: {{ .Labels.severity }}  **告警主机**: {{ .Labels.instance }}  **告警信息**: {{ index .Annotations "description" }} **告警时间**: {{ dateInZone "2006.01.02 15:04:05" (.StartsAt) "Asia/Shanghai" }}{{ end }}{{ end }} {{ define "__resolved_list" }}{{ range . }}---{{ if .Labels.owner }}@{{ .Labels.owner }}{{ end }}
**告警主题**: {{ .Annotations.summary }}
**告警类型**: {{ .Labels.alertname }}  **告警级别**: {{ .Labels.severity }} **告警主机**: {{ .Labels.instance }} **告警信息**: {{ index .Annotations "description" }} **告警时间**: {{ dateInZone "2006.01.02 15:04:05" (.StartsAt) "Asia/Shanghai" }} **恢复时间**: {{ dateInZone "2006.01.02 15:04:05" (.EndsAt) "Asia/Shanghai" }}{{ end }}{{ end }}  {{ define "default.title" }}{{ template "__subject" . }}{{ end }} {{ define "default.content" }}{{ if gt (len .Alerts.Firing) 0 }}**====侦测到{{ .Alerts.Firing | len  }}个故障====**{{ template "__alert_list" .Alerts.Firing }}---{{ end }} {{ if gt (len .Alerts.Resolved) 0 }}**====恢复{{ .Alerts.Resolved | len  }}个故障====**{{ template "__resolved_list" .Alerts.Resolved }}{{ end }}{{ end }}  {{ define "ding.link.title" }}{{ template "default.title" . }}{{ end }}{{ define "ding.link.content" }}{{ template "default.content" . }}{{ end }}{{ template "default.title" . }}{{ template "default.content" . }}1.2.3.4.5.6.7.8.9.10.11.12.13.14.15.16.17.18.19.20.21.22.23.24.25.26.27.28.29.30.31.32.33.34.35.36.37.38.39.40.41.42.43.44.45.46.47.48.49.50.51.52.53.54.55.56.57.58.59.60.61.62.63.64.65.66.3、重启
systemctl restart webhooksystemctl status webhook1.2.3.2 Alertmanager配置钉钉告警1、修改配置
vim /usr/local/prometheus/alertmanager/alertmanager.yml
route:  group_by: ['dingding']  group_wait: 30s  group_interval: 1h  repeat_interval: 1h  receiver: 'dingding.webhook1'  routes:  - receiver: 'dingding.webhook1'    match_re:      alertname: ".*"receivers:  - name: 'dingding.webhook1'    webhook_configs:    - url: 'http://16.32.15.200:8060/dingtalk/webhook1/send'      send_resolved: trueinhibit_rules:  - source_match:      severity: 'critical'    target_match:      severity: 'warning'    equal: ['alertname', 'dev', 'instance']1.2.3.4.5.6.7.8.9.10.11.12.13.14.15.16.17.18.19.20.21.22.23.重点修改地方我已图片圈出，如下图：


2、重启
systemctl restart alertmanagersystemctl status alertmanager1.2.3.3 Prometheus集成Alertmanager及告警规则配置1、修改prometheus配置
vim /usr/local/prometheus/prometheus/prometheus.yml
global:  scrape_interval: 15s   evaluation_interval: 15s 
alerting:  alertmanagers:    - static_configs:        - targets:           - 16.32.15.200:9093
rule_files:   - "/usr/local/prometheus/prometheus/rule/node_exporter.yml"
scrape_configs:  - job_name: "VMware-16.32.15.200"    static_configs:      - targets: ["16.32.15.200:59100"]1.2.3.4.5.6.7.8.9.10.11.12.13.14.15.16.17.18.19.重点修改地方，我已图片形式标注，如下图：


2、添加node_exporter告警规则
mkdir /usr/local/prometheus/prometheus/rulevim /usr/local/prometheus/prometheus/rule/node_exporter.yml
groups:- name: 服务器资源监控  rules:  - alert: 内存使用率过高    expr: 100 - (node_memory_MemAvailable_bytes / node_memory_MemTotal_bytes) * 100 > 80    for: 3m     labels:      severity: 严重告警    annotations:      summary: "{{ $labels.instance }} 内存使用率过高, 请尽快处理！"      description: "{{ $labels.instance }}内存使用率超过80%,当前使用率{{ $value }}%."            - alert: 服务器宕机    expr: up == 0    for: 1s    labels:      severity: 严重告警    annotations:      summary: "{{$labels.instance}} 服务器宕机, 请尽快处理!"      description: "{{$labels.instance}} 服务器延时超过3分钟,当前状态{{ $value }}. "   - alert: CPU高负荷    expr: 100 - (avg by (instance,job)(irate(node_cpu_seconds_total{mode="idle"}[5m])) * 100) > 90    for: 5m    labels:      severity: 严重告警    annotations:      summary: "{{$labels.instance}} CPU使用率过高,请尽快处理！"      description: "{{$labels.instance}} CPU使用大于90%,当前使用率{{ $value }}%. "        - alert: 磁盘IO性能    expr: avg(irate(node_disk_io_time_seconds_total[1m])) by(instance,job)* 100 > 90    for: 5m    labels:      severity: 严重告警    annotations:      summary: "{{$labels.instance}} 流入磁盘IO使用率过高,请尽快处理！"      description: "{{$labels.instance}} 流入磁盘IO大于90%,当前使用率{{ $value }}%."    - alert: 网络流入    expr: ((sum(rate (node_network_receive_bytes_total{device!~'tap.*|veth.*|br.*|docker.*|virbr*|lo*'}[5m])) by (instance,job)) / 100) > 102400    for: 5m    labels:      severity: 严重告警    annotations:      summary: "{{$labels.instance}} 流入网络带宽过高，请尽快处理！"      description: "{{$labels.instance}} 流入网络带宽持续5分钟高于100M. RX带宽使用量{{$value}}."   - alert: 网络流出    expr: ((sum(rate (node_network_transmit_bytes_total{device!~'tap.*|veth.*|br.*|docker.*|virbr*|lo*'}[5m])) by (instance,job)) / 100) > 102400    for: 5m    labels:      severity: 严重告警    annotations:      summary: "{{$labels.instance}} 流出网络带宽过高,请尽快处理！"      description: "{{$labels.instance}} 流出网络带宽持续5分钟高于100M. RX带宽使用量{$value}}."    - alert: TCP连接数    expr: node_netstat_Tcp_CurrEstab > 10000    for: 2m    labels:      severity: 严重告警    annotations:      summary: " TCP_ESTABLISHED过高！"      description: "{{$labels.instance}} TCP_ESTABLISHED大于100%,当前使用率{{ $value }}%."   - alert: 磁盘容量    expr: 100-(node_filesystem_free_bytes{fstype=~"ext4|xfs"}/node_filesystem_size_bytes {fstype=~"ext4|xfs"}*100) > 90    for: 1m    labels:      severity: 严重告警    annotations:      summary: "{{$labels.mountpoint}} 磁盘分区使用率过高，请尽快处理！"      description: "{{$labels.instance}} 磁盘分区使用大于90%，当前使用率{{ $value }}%."1.2.3.4.5.6.7.8.9.10.11.12.13.14.15.16.17.18.19.20.21.22.23.24.25.26.27.28.29.30.31.32.33.34.35.36.37.38.39.40.41.42.43.44.45.46.47.48.49.50.51.52.53.54.55.56.57.58.59.60.61.62.63.64.65.66.67.68.69.70.71.72.73.74.75.76.77.78.3、重启
systemctl restart prometheussystemctl status prometheus1.2.4、访问Prometheus Web页面可以查看到添加的规则，如下图：


四、测试告警1、故意将node_exporter停止掉，模拟服务器宕机
systemctl stop node_exporter1.2、Prometheus 管理页面可以看到告警信息如下图：




3、Prometheus会将告警信息发送给Alertmanager，所以说Alertmanager页面可以看到告警信息如下图：




4、此时会发送到钉钉机器人告警，如下图所示：



-----------------------------------©著作权归作者所有：来自51CTO博客作者qq5cc0022328fe7的原创作品，请联系作者获取转载授权，否则将追究法律责任Prometheus+Alertmanager+webhook-dingtalk实现钉钉告警https://blog.51cto.com/u_14304225/6401604