Load Balancer Monitoring

Load balancer monitoring

For cloud load balancers, you can customize monitoring — collect and export OpenStack Octavia metrics in Prometheus format and connect Grafana to track metrics on dashboards.

To see a list of available metrics, see the Octavia Metrics table in Prometheus.

Set up monitoring⁠

carefully

We do not recommend configuring monitoring during the peak load period of your infrastructure. When traffic on the load balancer increases, the frequency of metrics requests increases — this affects the performance of the load balancer instances.

1. Optional: choose how to restrict access to the balancer⁠

carefully

Balancer metrics will be accessible from the Internet by IP address and port without authentication if:

The balancer is on a private network and has a public IP address connected to it;
or the balancer is on a public subnet.

You can restrict access to the balancer from the Internet. The available method of restricting access depends on how the balancer is connected to the Internet.

For a load balancer with a public IP address and for a load balancer on a public subnet, you can specify the allowed IP addresses from which the load balancer will accept traffic when creating a load balancer rule. The load balancer network must have port security enabled.

For a balancer with a public IP address, you can also restrict access through a cloud firewall.

2. Create a load balancer rule⁠

Control panel
OpenStack CLI

If you chose a cloud firewall to restrict access to the balancer, create a firewall and go to step 3.
If you chose to specify allowed IP addresses in a balancer rule to restrict access to the balancer, make sure that port security is enabled on the balancer network.

2.1 Open the OpenStack CLI.

2.2 Check the network traffic filtering status — port_security_enabled field in the command output:
```
openstack network show
```
2.3 If the port_security_enabled field is true — filtering is enabled. Go to step 3.

2.4 If the port_security_enabled field is false, filtering is disabled. Enable filtering and go to step 3.
In the dashboard, on the top menu, click Products and select Cloud Servers.
Go to Balancers → Balancers tab.
Open the balancer page.
Click Create Rule.
In the Traffic reception protocol field, select the Prometheus option.
Optional: change the balancer port that Prometheus will access to receive metrics. The default port is 8088.
If you have selected allowed IP addresses to restrict access to the balancer — specify the IP address of the cloud server where Prometheus will be installed as the allowed CIDR.
Optional: change the connection settings for incoming requests to the balancer, to do this open the Advanced Rule Settings block and specify the connection timeout and maximum connections.
Click Create.

If you chose a cloud firewall to restrict access to the balancer, create a firewall and go to step 3.
If you chose to specify allowed IP addresses in a balancer rule to restrict access to the balancer, make sure that port security is enabled on the balancer network.

2.1 Open the OpenStack CLI.

2.2 Check the network traffic filtering status — port_security_enabled field in the command output:
```
openstack network show
```
2.3 If the port_security_enabled field is true — filtering is enabled. Go to step 3.

2.4 If the port_security_enabled field is false, filtering is disabled. Enable filtering and go to step 3.
Create a rule for the balancer with the PROMETHEUS protocol and port 8088:
```
openstack loadbalancer listener create \
  --name <listener_name> \
  --protocol PROMETHEUS \
  --protocol-port 8088 \
  [--allowed-cidr <allowed_cidr>] \
  <loadbalancer>
```
Specify:
- <listener_name> — rule name;
- optional: --allowed-cidr <allowed_cidr> — if you have selected allowed IP addresses to restrict access to the balancer . Parameter <allowed_cidr> — IP address of the cloud server where Prometheus will be installed;
- <loadbalancer> — The ID or name of the load balancer can be viewed with the command openstack loadbalancer list.
To view the load balancer metrics in text format, open the page in your browser:
```
http://<loadbalancer_ip_address>:8088
```
Specify <loadbalancer_ip_address> — private or public IP address of the load balancer. You can view it in the control panel: in the top menu, click Products → Cloud Servers → Balancers → Balancers tab → Load Balancer page.

2. Create a cloud server for Prometheus and Grafana⁠

Prometheus and Grafana need to be installed and configured on a cloud server that is on the same private subnet as the load balancer.

Use the instructions to Create a cloud server.

Select:

source — any ready-made Ubuntu image, for example Ubuntu 22.04 LTS 64-bit;
configuration — any configuration (fixed or arbitrary) with vCPU from 2, RAM from 4 GB and boot disk size from 10 GB;
network — a private subnet with a public IP address to which the load balancer is connected.

3. Install Prometheus on a cloud server and configure metrics collection⁠

Connect to the cloud server that you created you created earlier.

Download and install Prometheus:

sudo apt update
wget https://github.com/prometheus/prometheus/releases/download/v2.45.1/prometheus-2.45.1.linux-amd64.tar.gz
tar xvf prometheus-2.45.1.linux-amd64.tar.gz
cd prometheus-2.45.1.linux-amd64

Open the prometheus.yml configuration file:
```
nano prometheus.yml
```
Change the value of targets in the scrape_configs block:

Block example:
```
scrape_configs:
  - job_name: "prometheus"
  static_configs:
    - targets: ["<loadbalancer_private_ip_address>:8088"]
```
Specify <loadbalancer_private_ip_address> — private IP address of the load balancer. You can view it in the control panel: in the top menu, click Products → Cloud Servers → Balancers → Balancers tab → Load Balancer page.

Run Prometheus locally:

sudo apt install screen
screen -dm ./prometheus --config.file=./prometheus.yml --web.listen-address=localhost:9090

4. Install Grafana on the cloud server and log in to Grafana⁠

Connect to the cloud server that you created you created earlier.
Install the fontconfig library, which is required to work with Grafana:
```
sudo apt install -y libfontconfig1
```

Download and install Grafana:

cd ~
wget https://dl.grafana.com/oss/release/grafana_9.1.0_amd64.deb
sudo dpkg -i grafana_9.1.0_amd64.deb

Open the page in your browser:
```
http://<server_ip_address>:3000/login
```
Specify <server_ip_address> — the public IP address of the cloud server. You can copy in the control panel in the top menu click Products → Cloud Servers → Server page → Ports tab → in the port card click next to the public IP address.
Authorize Grafana. For the first authorization, use:
- admin;
- password is admin.
Grafana will prompt you to change your password. Enter the new password.
Click Submit.

5. Create a dashboard in Grafana⁠

There is a ready-made dashboard for collecting Octavia metrics. Read more on the OpenStack Octavia Amphora Load Balancer page on the official Grafana website.

Add a Data Source to Grafana. To do this, go to Configuration → Data sources.
Click Add data source.
Select the Prometheus data source type.
In the URL field, type http://localhost:9090.
Click Save & test.
Add a ready-made dashboard for Octavia metrics. To do this, go to Control panels → + Import.
In the Import via grafana.com field, enter 15828.
Press Load.
In the Prometheus field, select the Prometheus data source you created in step 5.
Click Import.
Make sure that the dashboard has been created. To do this, go to Control panels → Browse.
Open the OpenStack Octavia Amphora Load Balancer dashboard page.

Octavia metrics in Prometheus format⁠

Metrics are collected for all load balancer components:

octavia_loadbalancer, octavia_memory_pool — load balancer metrics;
octavia_listener — rule metrics. Collected for each rule separately, differentiated by ID;
octavia_pool — metrics of the target group. Collected for each target group separately, differentiated by ID;
octavia_member — server metrics. Collected for each server separately, differentiated by ID.

Learn more about the balancer components and the OpenStack Octavia model in the How the balancer works subsection.

Balancer Metrics
Metrics rules
Target group metrics
Server metrics

Metric	Type	Description
octavia_loadbalancer_cpu	gauge	Percentage vCPU load balancer vCPU utilization
octavia_loadbalancer_memory	gauge	Load balancer memory (RAM) utilization in percentage
octavia_memory_pool_allocated_bytes	gauge	Total amount of memory allocated to memory pools in bytes
octavia_memory_pool_used_bytes	gauge	Total amount of memory used in memory pools in bytes
octavia_memory_pool_failures_total	counter	Total number of unsuccessful attempts to allocate the memory pool
octavia_loadbalancer_max_connections	gauge	Maximum number of simultaneous connections
octavia_loadbalancer_current_connections	gauge	Number of active sessions
octavia_loadbalancer_connections_total	counter	Total number of sessions created
octavia_loadbalancer_requests_total	counter	Total number of TCP and HTTP requests
octavia_loadbalancer_max_ssl_connections	gauge	Configured maximum number of simultaneous SSL connections
octavia_loadbalancer_current_ssl_connections	gauge	Current number of active SSL connections
octavia_loadbalancer_ssl_connections_total	counter	Total number of open SSL connections
octavia_loadbalancer_current_connection_rate	gauge	Current number of connections per second for the last second
octavia_loadbalancer_limit_connection_rate	gauge	Configured maximum number of connections per second
octavia_loadbalancer_max_connection_rate	gauge	Maximum observed number of connections per second
octavia_loadbalancer_current_session_rate	gauge	Current number of sessions per second for the last second
octavia_loadbalancer_limit_session_rate	gauge	Customized maximum number of sessions per second
octavia_loadbalancer_max_session_rate	gauge	Maximum observed number of sessions per second
octavia_loadbalancer_current_ssl_rate	gauge	Current number of SSL sessions per second for the last second
octavia_loadbalancer_limit_ssl_rate	gauge	Configured maximum number of SSL sessions per second
octavia_loadbalancer_max_ssl_rate	gauge	Maximum observed number of SSL sessions per second
octavia_loadbalancer_current_frontend_ssl_key_rate	gauge	Current SSL key decoding time on the frontend per second for the last second
octavia_loadbalancer_max_frontend_ssl_key_rate	gauge	Maximum observed SSL key decoding time on the frontend per second
octavia_loadbalancer_current_backend_ssl_key_rate	gauge	Current SSL key decoding time on the backend in seconds for the last second
octavia_loadbalancer_max_backend_ssl_key_rate	gauge	Maximum observed SSL key decoding time on the backend per second
octavia_loadbalancer_ssl_cache_lookups_total	counter	Total number of searches in the SSL session cache
octavia_loadbalancer_ssl_cache_misses_total	counter	Total number of SSL session cache losses
octavia_loadbalancer_http_comp_bytes_in_total	counter	Number of bytes per second before HTTP compression for the last second
octavia_loadbalancer_http_comp_bytes_out_total	counter	Number of bytes per second after HTTP compression for the last second
octavia_loadbalancer_limit_http_comp	gauge	Configured maximum input data compression ratio in bytes
octavia_loadbalancer_listeners	gauge	Number of active rules
octavia_loadbalancer_dropped_logs_total	counter	Total number of deleted logs

Metric	Type	Description
octavia_listener_status	gauge	Current rule status: 0 — OFFLINE, 1 — ONLINE, 2 — DEGRADED
octavia_listener_current_sessions	gauge	Current number of active sessions
octavia_listener_max_sessions	gauge	Maximum observed number of active sessions
octavia_listener_limit_sessions	gauge	Customized session limit
octavia_listener_sessions_total	counter	Total number of sessions
octavia_listener_limit_session_rate	gauge	Customized limit of new sessions per second
octavia_listener_max_session_rate	gauge	Maximum observed number of sessions per second
octavia_listener_connections_rate_max	gauge	Maximum observed number of connections per second
octavia_listener_connections_total	counter	Total number of connections
octavia_listener_bytes_in_total	counter	Current total number of incoming bytes
octavia_listener_bytes_out_total	counter	Current total number of outgoing bytes
octavia_listener_requests_denied_total	counter	Total number of rejected requests
octavia_listener_responses_denied_total	counter	Total number of rejected responses
octavia_listener_request_errors_total	counter	Total number of query errors
octavia_listener_denied_connections_total	counter	Total number of requests rejected by connection setup rules
octavia_listener_denied_sessions_total	counter	Total number of requests denied by session rules
octavia_listener_failed_header_rewriting_total	counter	Total number of failed header rewrite rules
octavia_listener_http_requests_rate_max	gauge	Maximum observed number of HTTP requests per second
octavia_listener_http_requests_total	counter	Total number of HTTP requests received
octavia_listener_http_responses_total	counter	Total number of HTTP responses
octavia_listener_intercepted_requests_total	counter	Total number of interrupted HTTP requests
octavia_listener_http_cache_lookups_total	counter	Total number of searches in HTTP cache
octavia_listener_http_cache_hits_total	counter	Total number of HTTP cache hits
octavia_listener_http_comp_bytes_in_total	counter	Total number of bytes of HTTP responses subject to compression
octavia_listener_http_comp_bytes_out_total	counter	Total number of bytes of HTTP responses that passed compression
octavia_listener_http_comp_bytes_bypassed_total	counter	Total number of bytes skipped by HTTP compression (CPU / bandwidth limit)
octavia_listener_http_comp_responses_total	counter	Total number of compressed HTTP responses

Metric	Type	Description
octavia_pool_status	gauge	Current status of the target group: 0 — OFFLINE, 1 — ONLINE
octavia_pool_current_sessions	gauge	Current number of active sessions
octavia_pool_max_sessions	gauge	Maximum observed number of active sessions
octavia_pool_limit_sessions	gauge	Customized session limit
octavia_pool_sessions_total	counter	Total number of sessions
octavia_pool_max_session_rate	gauge	Maximum observed number of sessions per second
octavia_pool_last_session_seconds	gauge	Number of seconds since the last session assigned to the server
octavia_pool_current_queue	gauge	Current number of requests in the queue
octavia_pool_max_queue	gauge	Maximum observed number of requests in the queue
octavia_pool_connection_attempts_total	counter	Total number of attempts to establish a connection
octavia_pool_connection_reuses_total	counter	Total number of reconnections
octavia_pool_bytes_in_total	counter	Current total number of incoming bytes
octavia_pool_bytes_out_total	counter	Current total number of outgoing bytes
octavia_pool_queue_time_average_seconds	gauge	Average queue time for the last 1024 successful connections
octavia_pool_connect_time_average_seconds	gauge	Average connection time for the last 1024 successful connections
octavia_pool_response_time_average_seconds	gauge	Average response time for the last 1024 successful connections
octavia_pool_total_time_average_seconds	gauge	Average total time for the last 1024 successful connections
octavia_pool_max_queue_time_seconds	gauge	Maximum observed waiting time in the queue
octavia_pool_max_connect_time_seconds	gauge	Maximum observed waiting time for connection termination
octavia_pool_max_response_time_seconds	gauge	Maximum observed waiting time for server response
octavia_pool_max_total_time_seconds	gauge	Maximum observed total request and response time (request, waiting in queue, connection, response and processing)
octavia_pool_requests_denied_total	counter	Total number of rejected requests
octavia_pool_responses_denied_total	counter	Total number of rejected responses
octavia_pool_connection_errors_total	counter	Total number of connection errors
octavia_pool_response_errors_total	counter	Total number of response errors
octavia_pool_retry_warnings_total	counter	Total number of retry warnings
octavia_pool_redispatch_warnings_total	counter	Total number of alerts for resubmissions
octavia_pool_failed_header_rewriting_total	counter	Total number of warnings about unsuccessful header overwriting
octavia_pool_client_aborts_total	counter	Total number of times the data transfer was interrupted by the client
octavia_pool_member_aborts_total	counter	Total number of times data transmission was interrupted by the server
octavia_pool_active_members	gauge	Current number of active servers (members)
octavia_pool_backup_members	gauge	Current number of redundant servers (members)
octavia_pool_check_up_down_total	counter	Total number of UP→DOWN transitions
octavia_pool_check_last_change_seconds	gauge	Number of seconds since the last UP→DOWN transition
octavia_pool_downtime_seconds_total	counter	Total idle time in the target group in seconds
octavia_pool_loadbalanced_total	counter	Total number of times the target group has been selected for new sessions or redistribution
octavia_pool_http_requests_total	counter	Total number of HTTP requests received
octavia_pool_http_responses_total	counter	Total number of HTTP responses
octavia_pool_http_cache_lookups_total	counter	Total number of searches in HTTP cache
octavia_pool_http_cache_hits_total	counter	Total number of HTTP cache hits
octavia_pool_http_comp_bytes_in_total	counter	Total number of bytes of HTTP responses subject to compression
octavia_pool_http_comp_bytes_out_total	counter	Total number of bytes of HTTP responses that passed compression
octavia_pool_http_comp_bytes_bypassed_total	counter	Total number of bytes skipped by HTTP compression (CPU / bandwidth limit)
octavia_pool_http_comp_responses_total	counter	Total number of compressed HTTP responses

Metric	Type	Description
octavia_member_status	gauge	Current server status: 0 — ERROR, 1 — ONLINE, 2 — OFFLINE, 3 — DRAIN
octavia_member_current_sessions	gauge	Current number of active sessions
octavia_member_max_sessions	gauge	Maximum observed number of active sessions
octavia_member_limit_sessions	gauge	Customized session limit
octavia_member_sessions_total	counter	Total number of sessions
octavia_member_max_session_rate	gauge	Maximum observed number of sessions per second
octavia_member_last_session_seconds	gauge	Number of seconds since the last session assigned to the server
octavia_member_current_queue	gauge	Current number of requests in the queue
octavia_member_max_queue	gauge	Maximum observed number of requests in the queue
octavia_member_queue_limit	gauge	The configured maximum queue value for the server. Value 0 — no limit
octavia_member_bytes_in_total	counter	Current total number of incoming bytes
octavia_member_bytes_out_total	counter	Current total number of outgoing bytes
octavia_member_queue_time_average_seconds	gauge	Average queue time for the last 1024 successful connections
octavia_member_connect_time_average_seconds	gauge	Average connection time for the last 1024 successful connections
octavia_member_response_time_average_seconds	gauge	Average response time for the last 1024 successful connections
octavia_member_total_time_average_seconds	gauge	Average total time for the last 1024 successful connections
octavia_member_max_queue_time_seconds	gauge	Maximum observed waiting time in the queue
octavia_member_max_connect_time_seconds	gauge	Maximum observed waiting time for connection termination
octavia_member_max_response_time_seconds	gauge	Maximum observed waiting time for server response
octavia_member_max_total_total_time_seconds	gauge	Maximum observed total request and response time (request, waiting in queue, connection, response and processing)
octavia_member_connection_attempts_total	counter	Total number of attempts to establish a connection
octavia_member_member_connection_reuses_total	counter	Total number of reconnections
octavia_member_responses_denied_total	counter	Total number of rejected responses
octavia_member_member_connection_errors_total	counter	Total number of connection errors
octavia_member_member_response_errors_total	counter	Total number of response errors
octavia_member_retry_warnings_total	counter	Total number of retry warnings
octavia_member_redispatch_warnings_total	counter	Total number of alerts for resubmissions
octavia_member_failed_header_rewriting_total	counter	Total number of warnings about unsuccessful header overwriting
octavia_member_client_client_aborts_total	counter	Total number of times the data transfer was interrupted by the client
octavia_member_server_aborts_total	counter	Total number of times data transmission was interrupted by the server
octavia_member_weight	gauge	Server weight
octavia_member_check_failures_total	counter	Total number of failed checks. Only those tests in which the server is active are counted
octavia_member_check_up_down_total	counter	Total number of UP→DOWN transitions
octavia_member_downtime_seconds_total	counter	Total server downtime in seconds
octavia_member_check_last_change_seconds	gauge	Number of seconds since the last UP←→DOWN transition
octavia_member_current_throttle	gauge	Current percentage of regulation for the server if slow start mode is enabled or mode is disabled but no value is present
octavia_member_loadbalanced_total	counter	Total number of times the server has been selected for new sessions or when redistributed
octavia_member_http_responses_total	counter	Total number of HTTP responses
octavia_member_idle_connections_current	gauge	Current number of idle connections available for reuse
octavia_member_member_idle_connections_limit	gauge	Limit the number of available idle connections

Set up monitoring⁠​

1. Optional: choose how to restrict access to the balancer⁠​

2. Create a load balancer rule⁠​

2. Create a cloud server for Prometheus and Grafana⁠​

3. Install Prometheus on a cloud server and configure metrics collection⁠​

4. Install Grafana on the cloud server and log in to Grafana⁠​

5. Create a dashboard in Grafana⁠​

Octavia metrics in Prometheus format⁠​