-
Notifications
You must be signed in to change notification settings - Fork 1.7k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
OSDOCS-6642: DNS tracking Network Observability
- Loading branch information
Showing
6 changed files
with
114 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,12 @@ | ||
| // Module included in the following assemblies: | ||
| // | ||
| // network_observability/observing-network-traffic.adoc | ||
|
|
||
| :_content-type: REFERENCE | ||
| [id="network-observability-dns-overview_{context}"] | ||
| = Configuring DNS | ||
| You can configure graphical representation of DNS tracking of network flows in the Overview view. When enabled, you can see the following metrics represented in a chart in the Overview. See the _Additional Resources_ of this section for more information about enabling and working with this view. | ||
|
|
||
| * Top 5 average DNS latencies | ||
| * Top 5 DNS response code | ||
| * Top 5 DNS response code stacked with total |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,37 @@ | ||
| // Module included in the following assemblies: | ||
| // | ||
| // network_observability/observing-network-traffic.adoc | ||
|
|
||
| :_content-type: PROCEDURE | ||
| [id="network-observability-dns-tracking_{context}"] | ||
| = Working with DNS tracking | ||
|
|
||
| .Procedure | ||
| . In the web console, navigate to *Operators* -> *Installed Operators*. | ||
| . Under the *Provided APIs* heading for the *NetObserv Operator*, select *Flow Collector*. | ||
| . Select *cluster* then select the *YAML* tab. | ||
| . Configure the `FlowCollector` custom resource so that `spec.processor.logTypes`, `conversationEndTimeout`, and `conversationHeartbeatInterval` parameters are set according to your observation needs. A sample configuration is as follows: | ||
| + | ||
| [id="network-observability-flowcollector-configuring-dns_{context}"] | ||
| .Configure `FlowCollector` for DNS tracking | ||
| [source, yaml] | ||
| ---- | ||
| apiVersion: flows.netobserv.io/v1alpha1 | ||
| kind: FlowCollector | ||
| metadata: | ||
| name: cluster | ||
| namespace: netobserv | ||
| deploymentModel: DIRECT | ||
| agent: | ||
| type: EBPF | ||
| ebpf: | ||
| enableDNSTracking: true <1> | ||
| sampling: 50 | ||
| logLevel: info | ||
| privileged: true <1> | ||
| ---- | ||
| <1> You can set the `spec.agent.ebpf.enableDNSTracking` and `spec.agent.ebpf.privileged` specifications to `true` to enable DNS tracking of each network flow in the web console. | ||
|
|
||
| . When you refresh the *Network Traffic* page, the *Overview* and *Traffic flows* *Manage panels* and *Manage columns* have new DNS choices you can select to see graphical visualizations in the *Overview* and DNS metrics in the *Traffic Flows* views. | ||
| . Next you can filter on specific DNS metrics, such as *DNS Id*, *DNS Latency* and *DNS Response Code* and see more information from the side panel. | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,37 @@ | ||
| // Module included in the following assemblies: | ||
| // | ||
| // network_observability/observing-network-traffic.adoc | ||
|
|
||
| :_content-type: PROCEDURE | ||
| [id="network-observability-packet-drops_{context}"] | ||
| = Working with packet drops | ||
|
|
||
| .Procedure | ||
| . In the web console, navigate to *Operators* -> *Installed Operators*. | ||
| . Under the *Provided APIs* heading for the *NetObserv Operator*, select *Flow Collector*. | ||
| . Select *cluster* then select the *YAML* tab. | ||
| . Configure the `FlowCollector` custom resource so that `spec.processor.logTypes`, `conversationEndTimeout`, and `conversationHeartbeatInterval` parameters are set according to your observation needs. A sample configuration is as follows: | ||
| + | ||
| [id="network-observability-flowcollector-configuring-dns_{context}"] | ||
| .Configure `FlowCollector` for packet drops | ||
| [source, yaml] | ||
| ---- | ||
| apiVersion: flows.netobserv.io/v1alpha1 | ||
| kind: FlowCollector | ||
| metadata: | ||
| name: cluster | ||
| namespace: netobserv | ||
| deploymentModel: DIRECT | ||
| agent: | ||
| type: EBPF | ||
| ebpf: | ||
| enablePktDrop: true <1> | ||
| sampling: 50 | ||
| logLevel: info | ||
| privileged: true <1> | ||
| ---- | ||
| <1> You can set the `spec.agent.ebpf.enablePktDrop` and `spec.agent.ebpf.privileged` specifications to `true` to enable reporting of packet drops of each network flow in the web console. | ||
|
|
||
| . When you refresh the *Network Traffic* page, the *Overview* and *Traffic flows* *Manage panels* and *Manage columns* have new choices you can select to see graphical visualizations of the packet drops in the *Overview*. In the *Traffic Flows* view, you can expand the side panel to see | ||
| . In the *Traffic Flows* view, you can | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,14 @@ | ||
| // Module included in the following assemblies: | ||
| // | ||
| // network_observability/observing-network-traffic.adoc | ||
|
|
||
| :_content-type: REFERENCE | ||
| [id="network-observability-pktdrop-overview_{context}"] | ||
| = Configuring packet drop overview | ||
| You can configure graphical representation of network flow records with packet loss in the Overview view. When enabled, you can see the following metrics represented in a chart in the Overview. See the _Additional Resources_ of this section for more information about enabling and working with this view. | ||
|
|
||
| * Top 5 flow dropped rates stacked | ||
| * Total dropped rate | ||
| * Top 5 dropped state | ||
| * Top 5 dropped cause | ||
| * Top 5 flow dropped rates stacked with total |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters