2023-09-01 15:57:07 +02:00
|
|
|
[![pipeline status](https://gitlab.com/micro-entreprise/opnsense-prom-exporter/badges/main/pipeline.svg)](https://gitlab.com/micro-entreprise/opnsense-prom-exporter/)
|
|
|
|
[![coverage report](https://gitlab.com/micro-entreprise/opnsense-prom-exporter/badges/main/coverage.svg)](https://gitlab.com/micro-entreprise/opnsense-prom-exporter/)
|
|
|
|
[![Version status](https://img.shields.io/pypi/v/opnsense-prom-exporter.svg)](https://pypi.python.org/pypi/opnsense-prom-exporter/)
|
|
|
|
[![PyPi Package](https://img.shields.io/pypi/dm/opnsense-prom-exporter?label=pypi%20downloads)](https://pypi.org/project/opnsense-prom-exporter)
|
|
|
|
|
2023-09-01 13:27:55 +02:00
|
|
|
# OPNSense Prometheus exporter
|
|
|
|
|
|
|
|
I've configures OPNSense with High Availability settings using 2 servers.
|
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
- https://docs.opnsense.org/manual/hacarp.html
|
|
|
|
- https://docs.opnsense.org/manual/how-tos/carp.html
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
So I've 2 servers: _MAIN_ and _BACKUP_, in normal situation _MAIN_ server
|
|
|
|
is expected to be `active` and the _BACKUP_ server to be in `hot_standby` state.
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
The initial needs was to be able to make sure that _BACKUP_ server is ready (hot standby)
|
2023-09-01 13:27:55 +02:00
|
|
|
to get the main server role with the `active` state at any time.
|
|
|
|
|
|
|
|
> Unfortunately I've not found a proper configuration to call OPNSense HTTP API over
|
|
|
|
> opnvpn on backup server using blackbox configuratoin. That why I've started to develop
|
|
|
|
> this exporter install on a server on the LAN to be able to resquest both OPNSense servers.
|
|
|
|
|
|
|
|
## Metrics
|
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
This exporter gives following metrics, all metrics received following labels:
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
- `instance`: by default this is set with the hostname where is running this exporter service
|
|
|
|
- `host`: the host of the OPNSense
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
### Enums
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
- `opnsense_main_ha_state`: OPNSense HA state of the MAIN server
|
|
|
|
- `opnsense_backup_ha_state`: OPNSense HA state of the BACKUP server
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
### Gauges
|
|
|
|
|
|
|
|
- `opnsense_active_server_bytes_received`: Active OPNSense server bytes received on WAN interface
|
|
|
|
- `opnsense_active_server_bytes_transmitted`: Active OPNSense server bytes transmitted on WAN interface
|
|
|
|
|
|
|
|
## Usage
|
2023-09-01 13:27:55 +02:00
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
> _Note_: Most updated documentation from command line !
|
2023-09-01 13:27:55 +02:00
|
|
|
|
|
|
|
```
|
|
|
|
opnsense-exporter --help
|
2023-09-01 16:58:12 +02:00
|
|
|
usage: opnsense-exporter [-h] [--check-frequency-seconds FREQUENCY]
|
|
|
|
[--main-host MAIN] [--backup-host BACKUP]
|
|
|
|
[--opnsense-user USER]
|
|
|
|
[--opnsense-password PASSWORD]
|
|
|
|
[--prometheus-instance PROM_INSTANCE]
|
|
|
|
|
|
|
|
OPNSense prometheus exporter
|
|
|
|
|
|
|
|
optional arguments:
|
|
|
|
-h, --help show this help message and exit
|
|
|
|
--check-frequency-seconds FREQUENCY, -c FREQUENCY
|
|
|
|
How often (in seconds) this server requests
|
|
|
|
OPNSense servers (default: 2)
|
|
|
|
--main-host MAIN, -m MAIN
|
|
|
|
MAIN OPNsense server that should be in `active`
|
|
|
|
state in normal configuration.
|
|
|
|
--backup-host BACKUP, -b BACKUP
|
|
|
|
BACKUP OPNsense server that should be
|
|
|
|
`hot_standby` state in normal configuration.
|
|
|
|
--opnsense-user USER, -u USER
|
|
|
|
OPNsense user. Expect to be the same on MAIN and
|
|
|
|
BACKUP servers
|
|
|
|
--opnsense-password PASSWORD, -p PASSWORD
|
|
|
|
OPNsense password. Expect to be the same on MAIN
|
|
|
|
and BACKUP servers
|
|
|
|
--prometheus-instance PROM_INSTANCE
|
|
|
|
Exporter Instance name, default value computed
|
|
|
|
with hostname where the server is running. Use to
|
2023-09-01 13:27:55 +02:00
|
|
|
```
|
2023-09-01 16:58:12 +02:00
|
|
|
|
|
|
|
You can setup env through `.env` file or environment variables with defined as default values
|
|
|
|
(so command line will get the precedent):
|
|
|
|
|
|
|
|
- **CHECK_FREQUENCY_SECONDS**: default value for `--check-frequency-seconds` param
|
|
|
|
- **OPNSENSE_MAIN_HOST**: default value for `--main-host` param
|
|
|
|
- **OPNSENSE_BACKUP_HOST**: default value for `--backup-host` param
|
|
|
|
- **OPNSENSE_USERNAME**: default value for `--opnsense-user` param
|
|
|
|
- **OPNSENSE_PASSWORD**: default value for `--opnsense-password` param
|
|
|
|
|
|
|
|
## Roadmap
|
|
|
|
|
|
|
|
- allow to change the listening port (today it force using `8000`)
|
|
|
|
|
|
|
|
## Changelog
|
|
|
|
|
2023-09-02 02:35:02 +02:00
|
|
|
### Version 0.4.0
|
|
|
|
|
|
|
|
Higher timeout while getting WAN traffic info
|
|
|
|
|
2023-09-02 02:17:21 +02:00
|
|
|
### Version 0.3.0
|
|
|
|
|
|
|
|
Use proper method to compute WAN traffic
|
|
|
|
|
2023-09-01 18:18:09 +02:00
|
|
|
### Version 0.2.0
|
|
|
|
|
|
|
|
Setup automatic release from gitlab while pushing new tag
|
|
|
|
|
2023-09-01 16:58:12 +02:00
|
|
|
### Version 0.1.0
|
|
|
|
|
|
|
|
Initial version
|