我的书签
添加书签
移除书签The Alertmanager Config Secret contains the configuration of an Alertmanager instance that sends out notifications based on alerts it receives from Prometheus.
- Overview
- Creating Receivers in the Rancher UI
- Receiver Configuration
- Route Configuration
- Example Alertmanager Configs
- Example Route Config for CIS Scan Alerts
Overview
By default, Rancher Monitoring deploys a single Alertmanager onto a cluster that uses a default Alertmanager Config Secret. As part of the chart deployment options, you can opt to increase the number of replicas of the Alertmanager deployed onto your cluster that can all be managed using the same underlying Alertmanager Config Secret.
This Secret should be updated or modified any time you want to:
- Add in new notifiers or receivers
- Change the alerts that should be sent to specific notifiers or receivers
- Change the group of alerts that are sent out
By default, you can either choose to supply an existing Alertmanager Config Secret (i.e. any Secret in the
cattle-monitoring-systemnamespace) or allow Rancher Monitoring to deploy a default Alertmanager Config Secret onto your cluster. By default, the Alertmanager Config Secret created by Rancher will never be modified / deleted on an upgrade / uninstall of therancher-monitoringchart to prevent users from losing or overwriting their alerting configuration when executing operations on the chart.
For more information on what fields can be specified in this secret, please look at the Prometheus Alertmanager docs.
The full spec for the Alertmanager configuration file and what it takes in can be found here.
For more information, refer to the official Prometheus documentation about configuring routes.
Connecting Routes and PrometheusRules
When you define a Rule (which is declared within a RuleGroup in a PrometheusRule resource), the spec of the Rule itself contains labels that are used by Prometheus to figure out which Route should receive this Alert. For example, an Alert with the label team: front-end will be sent to all Routes that match on that label.
Creating Receivers in the Rancher UI
Available as of v2.5.4
Prerequisites:
- The monitoring application needs to be installed.
- If you configured monitoring with an existing Alertmanager Secret, it must have a format that is supported by Rancher’s UI. Otherwise you will only be able to make changes based on modifying the Alertmanager Secret directly. Note: We are continuing to make enhancements to what kinds of Alertmanager Configurations we can support using the Routes and Receivers UI, so please file an issue if you have a request for a feature enhancement.
To create notification receivers in the Rancher UI,
- Click Cluster Explorer > Monitoring and click Receiver.
- Enter a name for the receiver.
- Configure one or more providers for the receiver. For help filling out the forms, refer to the configuration options below.
- Click Create.
Result: Alerts can be configured to send notifications to the receiver(s).
Receiver Configuration
The notification integrations are configured with the receiver, which is explained in the Prometheus documentation.
Native vs. Non-native Receivers
By default, AlertManager provides native integration with some receivers, which are listed in this section. All natively supported receivers are configurable through the Rancher UI.
For notification mechanisms not natively supported by AlertManager, integration is achieved using the webhook receiver. A list of third-party drivers providing such integrations can be found here. Access to these drivers, and their associated integrations, is provided through the Alerting Drivers app. Once enabled, configuring non-native receivers can also be done through the Rancher UI.
Currently the Rancher Alerting Drivers app provides access to the following integrations: - Microsoft Teams, based on the prom2teams driver - SMS, based on the Sachet driver
Changes in Rancher v2.5.8
Rancher v2.5.8 added Microsoft Teams and SMS as configurable receivers in the Rancher UI.
Changes in Rancher v2.5.4
Rancher v2.5.4 introduced the capability to configure receivers by filling out forms in the Rancher UI.
The following types of receivers can be configured in the Rancher UI:
The custom receiver option can be used to configure any receiver in YAML that cannot be configured by filling out the other forms in the Rancher UI.
Slack
| Field | Type | Description |
|---|---|---|
| URL | String | Enter your Slack webhook URL. For instructions to create a Slack webhook, see the Slack documentation. |
| Default Channel | String | Enter the name of the channel that you want to send alert notifications in the following format: #<channelname>. |
| Proxy URL | String | Proxy for the webhook notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
| Field | Type | Description |
|---|---|---|
| Default Recipient Address | String | The email address that will receive notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
SMTP options:
| Field | Type | Description |
|---|---|---|
| Sender | String | Enter an email address available on your SMTP mail server that you want to send the notification from. |
| Host | String | Enter the IP address or hostname for your SMTP server. Example: smtp.email.com. |
| Use TLS | Bool | Use TLS for encryption. |
| Username | String | Enter a username to authenticate with the SMTP server. |
| Password | String | Enter a password to authenticate with the SMTP server. |
PagerDuty
| Field | Type | Description |
|---|---|---|
| Integration Type | String | Events API v2 or Prometheus. |
| Default Integration Key | String | For instructions to get an integration key, see the PagerDuty documentation. |
| Proxy URL | String | Proxy for the PagerDuty notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Opsgenie
| Field | Description |
|---|---|
| API Key | For instructions to get an API key, refer to the Opsgenie documentation. |
| Proxy URL | Proxy for the Opsgenie notifications. |
| Enable Send Resolved Alerts | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Opsgenie Responders:
| Field | Type | Description |
|---|---|---|
| Type | String | Schedule, Team, User, or Escalation. For more information on alert responders, refer to the Opsgenie documentation. |
| Send To | String | Id, Name, or Username of the Opsgenie recipient. |
Webhook
| Field | Description |
|---|---|
| URL | Webhook URL for the app of your choice. |
| Proxy URL | Proxy for the webhook notification. |
| Enable Send Resolved Alerts | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Custom
The YAML provided here will be directly appended to your receiver within the Alertmanager Config Secret.
Teams
Enabling the Teams Receiver for Rancher Managed Clusters
The Teams receiver is not a native receiver and must be enabled before it can be used. You can enable the Teams receiver for a Rancher managed cluster by going to the Apps page and installing the rancher-alerting-drivers app with the Teams option selected.
- In the Rancher UI, go to the cluster where you want to install rancher-alerting-drivers and click Cluster Explorer.
- Click Apps.
- Click the Alerting Drivers app.
- Click the Helm Deploy Options tab
- Select the Teams option and click Install.
- Take note of the namespace used as it will be required in a later step.
Configure the Teams Receiver
The Teams receiver can be configured by updating its ConfigMap. For example, the following is a minimal Teams receiver configuration.
[Microsoft Teams]teams-instance-1: https://your-teams-webhook-url
When configuration is complete, add the receiver using the steps in this section.
Use the example below as the URL where:
ns-1is replaced with the namespace where therancher-alerting-driversapp is installed
url: http://rancher-alerting-drivers-prom2teams.ns-1.svc:8089/v2/teams-instance-1
SMS
Enabling the SMS Receiver for Rancher Managed Clusters
The SMS receiver is not a native receiver and must be enabled before it can be used. You can enable the SMS receiver for a Rancher managed cluster by going to the Apps page and installing the rancher-alerting-drivers app with the SMS option selected.
- In the Rancher UI, go to the cluster where you want to install rancher-alerting-drivers and click Cluster Explorer.
- Click Apps.
- Click the Alerting Drivers app.
- Click the Helm Deploy Options tab
- Select the SMS option and click Install.
- Take note of the namespace used as it will be required in a later step.
Configure the SMS Receiver
The SMS receiver can be configured by updating its ConfigMap. For example, the following is a minimal SMS receiver configuration.
providers:telegram:token: 'your-token-from-telegram'receivers:- name: 'telegram-receiver-1'provider: 'telegram'to:- '123456789'
When configuration is complete, add the receiver using the steps in this section.
Use the example below as the name and URL, where:
- the name assigned to the receiver, e.g.
telegram-receiver-1, must match the name in thereceivers.namefield in the ConfigMap, e.g.telegram-receiver-1 ns-1in the URL is replaced with the namespace where therancher-alerting-driversapp is installed
name: telegram-receiver-1url http://rancher-alerting-drivers-sachet.ns-1.svc:9876/alert
The following types of receivers can be configured in the Rancher UI:
The custom receiver option can be used to configure any receiver in YAML that cannot be configured by filling out the other forms in the Rancher UI.
Slack
| Field | Type | Description |
|---|---|---|
| URL | String | Enter your Slack webhook URL. For instructions to create a Slack webhook, see the Slack documentation. |
| Default Channel | String | Enter the name of the channel that you want to send alert notifications in the following format: #<channelname>. |
| Proxy URL | String | Proxy for the webhook notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
| Field | Type | Description |
|---|---|---|
| Default Recipient Address | String | The email address that will receive notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
SMTP options:
| Field | Type | Description |
|---|---|---|
| Sender | String | Enter an email address available on your SMTP mail server that you want to send the notification from. |
| Host | String | Enter the IP address or hostname for your SMTP server. Example: smtp.email.com. |
| Use TLS | Bool | Use TLS for encryption. |
| Username | String | Enter a username to authenticate with the SMTP server. |
| Password | String | Enter a password to authenticate with the SMTP server. |
PagerDuty
| Field | Type | Description |
|---|---|---|
| Integration Type | String | Events API v2 or Prometheus. |
| Default Integration Key | String | For instructions to get an integration key, see the PagerDuty documentation. |
| Proxy URL | String | Proxy for the PagerDuty notifications. |
| Enable Send Resolved Alerts | Bool | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Opsgenie
| Field | Description |
|---|---|
| API Key | For instructions to get an API key, refer to the Opsgenie documentation. |
| Proxy URL | Proxy for the Opsgenie notifications. |
| Enable Send Resolved Alerts | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Opsgenie Responders:
| Field | Type | Description |
|---|---|---|
| Type | String | Schedule, Team, User, or Escalation. For more information on alert responders, refer to the Opsgenie documentation. |
| Send To | String | Id, Name, or Username of the Opsgenie recipient. |
Webhook
| Field | Description |
|---|---|
| URL | Webhook URL for the app of your choice. |
| Proxy URL | Proxy for the webhook notification. |
| Enable Send Resolved Alerts | Whether to send a follow-up notification if an alert has been resolved (e.g. [Resolved] High CPU Usage). |
Custom
The YAML provided here will be directly appended to your receiver within the Alertmanager Config Secret.
The Alertmanager must be configured in YAML, as shown in these examples.
Route Configuration
Receiver
The route needs to refer to a receiver that has already been configured.
Grouping
| Field | Default | Description |
|---|---|---|
| Group By | N/a | The labels by which incoming alerts are grouped together. For example, [ group_by: ‘[‘ <labelname>, … ‘]’ ] Multiple alerts coming in for labels such as cluster=A and alertname=LatencyHigh can be batched into a single group. To aggregate by all possible labels, use the special value ‘…’ as the sole label name, for example: group_by: [‘…’] Grouping by … effectively disables aggregation entirely, passing through all alerts as-is. This is unlikely to be what you want, unless you have a very low alert volume or your upstream notification system performs its own grouping. |
| Group Wait | 30s | How long to wait to buffer alerts of the same group before sending initially. |
| Group Interval | 5m | How long to wait before sending an alert that has been added to a group of alerts for which an initial notification has already been sent. |
| Repeat Interval | 4h | How long to wait before re-sending a given alert that has already been sent. |
Matching
The Match field refers to a set of equality matchers used to identify which alerts to send to a given Route based on labels defined on that alert. When you add key-value pairs to the Rancher UI, they correspond to the YAML in this format:
match:[ <labelname>: <labelvalue>, ... ]
The Match Regex field refers to a set of regex-matchers used to identify which alerts to send to a given Route based on labels defined on that alert. When you add key-value pairs in the Rancher UI, they correspond to the YAML in this format:
match_re:[ <labelname>: <regex>, ... ]
The Alertmanager must be configured in YAML, as shown in these examples.
Example Alertmanager Configs
Slack
To set up notifications via Slack, the following Alertmanager Config YAML can be placed into the alertmanager.yaml key of the Alertmanager Config Secret, where the api_url should be updated to use your Webhook URL from Slack:
route:group_by: ['job']group_wait: 30sgroup_interval: 5mrepeat_interval: 3hreceiver: 'slack-notifications'receivers:- name: 'slack-notifications'slack_configs:- send_resolved: truetext: '{{ template "slack.rancher.text" . }}'api_url: <user-provided slack webhook url here>templates:- /etc/alertmanager/config/*.tmpl
PagerDuty
To set up notifications via PagerDuty, use the example below from the PagerDuty documentation as a guideline. This example sets up a route that captures alerts for a database service and sends them to a receiver linked to a service that will directly notify the DBAs in PagerDuty, while all other alerts will be directed to a default receiver with a different PagerDuty integration key.
The following Alertmanager Config YAML can be placed into the alertmanager.yaml key of the Alertmanager Config Secret. The service_key should be updated to use your PagerDuty integration key and can be found as per the “Integrating with Global Event Routing” section of the PagerDuty documentation. For the full list of configuration options, refer to the Prometheus documentation.
route:group_by: [cluster]receiver: 'pagerduty-notifications'group_interval: 5mroutes:- match:service: databasereceiver: 'database-notifcations'receivers:- name: 'pagerduty-notifications'pagerduty_configs:- service_key: 'primary-integration-key'- name: 'database-notifcations'pagerduty_configs:- service_key: 'database-integration-key'
Example Route Config for CIS Scan Alerts
While configuring the routes for rancher-cis-benchmark alerts, you can specify the matching using the key-value pair job: rancher-cis-scan.
For example, the following example route configuration could be used with a Slack receiver named test-cis:
spec:receiver: test-cisgroup_by:# - stringgroup_wait: 30sgroup_interval: 30srepeat_interval: 30smatch:job: rancher-cis-scan# key: stringmatch_re:{}# key: string
For more information on enabling alerting for rancher-cis-benchmark, see this section.
