Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
KDSBest7712yYou actually need to provide data to those tools e.g. grafana.
It just displays what you feed it.
They are not for profiling. -
hjk10156962yIf I need deep analysis or do some stuff with log lines good old GNU tools are my friends too. Showing response times should be easily visualised with the tools you mentioned though.
-
@hjk101 they should. And they are. Problem is, RTs in splunk are not logged [if enabled, logging alows down the app significantly due to high req rate], and AppD granularity is 1 minute which is not good if I need to find a problem which occurs every 1min. Grafana has the granularity, but cannot monitor the faulty component's traffic bcz of how its routed internally.
-
Btw, if interested - the problem was an AWS Redis. For some weird reason, one of the 9 redis nodes slowed down RTs every 60 seconds. Other nodes in the cluster worked OK. Raised an AWS SR - I need explanations
-
@netikras sounds like your missing some observability. Automate it and get it into CW or Grafana and start alerting on it
-
@lungdart aws support said that these slowdowns are due to QUITs being sent more often. It never occurred to me quits would have such an effect...
-
@lungdart I know. The SR is still open.
As for lack of metrics - it's a huge corp, a large app, so granularity is not gonna change that easily -
@lungdart alerting is possible, but for aleeting to be efficient I either need crazy granularity of metrics, or know what I'm hunting for. Now I have neither
-
@netikras you could monitor quits. If you have TLS termination or a service mesh, you should be able to filter on that.
Send that metric to cloudwatch and alert if you see 10 in a 5 minute window. Maybe even log the client sending the requests.
Maybe your loadbalancer is sending a single client to one node that uses quits. Or maybe a node has been compromised... -
@lungdart yeah, thing is, the investigation is still in progress :) perhaps there's also smth else I need to monitor as well, besides quits ;)
it's too early for this.
Related Rants
All these super expensive and fancy enterprise tools. CloudWatch, AppDynamics, Grafana, Splunk and whatnot. Spent a month trying to figure out why the fuck the app does not perform well.
Took 1 day with tcpdump, awk and gnu utils to figure out why.
Should anyone need a tcpdump analyzer -- try my awk script. Shows response times of each network call w/o impacting app performance :)
https://gist.github.com/netikras/...
rant
gnu
performance
tcpdump
enterprise