ilia/ansible
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
ansible/roles/monitoring/README.md
ilia 579f0709ce Update Makefile and inventory configurations for improved task execution and organization 
- Refactor Makefile to enhance command structure, including clearer descriptions and usage examples for targets related to development, inventory, and monitoring tasks.
- Update inventory files to ensure correct host configurations and user settings, including adjustments to ansible_user for specific hosts.
- Modify group_vars to streamline Tailscale configuration and ensure proper handling of authentication keys.

These changes improve the clarity and usability of the Makefile and inventory setup, facilitating smoother operations across the infrastructure.
2025-10-09 21:24:45 -04:00

1.8 KiB
Raw Blame History

Role: monitoring

Description

Installs comprehensive system monitoring tools and custom monitoring scripts for performance analysis and security monitoring.

Requirements

  • Ansible 2.9+
  • Debian/Ubuntu systems
  • Sufficient disk space for logs

Installed Tools

  • htop: Interactive process viewer
  • btop: Modern system monitor (from apt or binary)
  • iotop: I/O monitoring
  • nethogs: Network usage per process
  • iftop: Network bandwidth monitoring
  • ncdu: Disk usage analyzer
  • fail2ban: Intrusion prevention
  • logwatch: Log analysis and reporting

Custom Scripts

  • /usr/local/bin/monitoring/sysinfo: System overview dashboard
  • /usr/local/bin/monitoring/netinfo: Network monitoring script

Variables

Variable Default Description
monitoring_install_htop true Install htop process viewer
monitoring_install_fail2ban true Install intrusion prevention
monitoring_install_logwatch true Install log analysis
monitoring_custom_scripts true Install custom monitoring scripts

Dependencies

  • base role (for basic packages)

Example Playbook

- hosts: servers
  roles:
    - role: monitoring
      monitoring_install_fail2ban: false

Tags

  • monitoring: All monitoring tasks
  • tools: Tool installation only
  • scripts: Custom script deployment
  • security: Security monitoring tools

Fail2ban Configuration

  • SSH protection: Enabled by default
  • Ban time: 10 minutes
  • Find time: 10 minutes
  • Max retry: 5 attempts

Notes

  • Creates monitoring user directories
  • Configures fail2ban with custom rules
  • btop installed from apt on Debian 12+, or from GitHub binary on older versions
  • Custom scripts require manual execution