ilia/ansible
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
ansible/roles/monitoring/README.md
ilia 579f0709ce Update Makefile and inventory configurations for improved task execution and organization 
- Refactor Makefile to enhance command structure, including clearer descriptions and usage examples for targets related to development, inventory, and monitoring tasks.
- Update inventory files to ensure correct host configurations and user settings, including adjustments to ansible_user for specific hosts.
- Modify group_vars to streamline Tailscale configuration and ensure proper handling of authentication keys.

These changes improve the clarity and usability of the Makefile and inventory setup, facilitating smoother operations across the infrastructure.
2025-10-09 21:24:45 -04:00

62 lines
1.8 KiB
Markdown
Raw Blame History

# Role: monitoring
## Description
Installs comprehensive system monitoring tools and custom monitoring scripts for performance analysis and security monitoring.
## Requirements
- Ansible 2.9+
- Debian/Ubuntu systems
- Sufficient disk space for logs
## Installed Tools
- **htop**: Interactive process viewer
- **btop**: Modern system monitor (from apt or binary)
- **iotop**: I/O monitoring
- **nethogs**: Network usage per process
- **iftop**: Network bandwidth monitoring
- **ncdu**: Disk usage analyzer
- **fail2ban**: Intrusion prevention
- **logwatch**: Log analysis and reporting
## Custom Scripts
- `/usr/local/bin/monitoring/sysinfo`: System overview dashboard
- `/usr/local/bin/monitoring/netinfo`: Network monitoring script
## Variables
| Variable | Default | Description |
|----------|---------|-------------|
| `monitoring_install_htop` | `true` | Install htop process viewer |
| `monitoring_install_fail2ban` | `true` | Install intrusion prevention |
| `monitoring_install_logwatch` | `true` | Install log analysis |
| `monitoring_custom_scripts` | `true` | Install custom monitoring scripts |
## Dependencies
- `base` role (for basic packages)
## Example Playbook
```yaml
- hosts: servers
roles:
- role: monitoring
monitoring_install_fail2ban: false
```
## Tags
- `monitoring`: All monitoring tasks
- `tools`: Tool installation only
- `scripts`: Custom script deployment
- `security`: Security monitoring tools
## Fail2ban Configuration
- **SSH protection**: Enabled by default
- **Ban time**: 10 minutes
- **Find time**: 10 minutes
- **Max retry**: 5 attempts
## Notes
- Creates monitoring user directories
- Configures fail2ban with custom rules
- btop installed from apt on Debian 12+, or from GitHub binary on older versions
- Custom scripts require manual execution
Reference in New Issue View Git Blame Copy Permalink