Skip to content
/ sysoom Public

Send details to Alertmanager when an Out-Of-Memory (OOM) event occurs.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

druggo/sysoom

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
11-imudp.conf
11-imudp.conf
 
 
21-allsyslog.conf
21-allsyslog.conf
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
oom.py
oom.py
 
 

Repository files navigation

sysOOM

Send details to alertmanager when OOM event occurs

  "labels": {
        "memcg": "host",
        "process": "java",
        "hostname": "wiki2",
        "instance": "10.0.0.4",
        "severity": "warning",
        "alertname": "SysOOM",
        "process_rss": "165564kB",
        "process_list": "systemd-logind getty systemd-network systemd systemd-udevd java rsyslogd"
      }

Basic use

  • Start sysOOM, replace 10.0.0.3 with your own alertmanager ip

    docker run -p 5149:5149/udp --add-host alertmanager:10.0.0.3 -d --restart=always --name sysoom druggo/sysoom

  • Forward kernel log to sysOOM, replace 10.0.0.4 with sysOOM container's host ip and reload rsyslog

    echo ':syslogtag, startswith, "kernel" @10.0.0.4:5149' > /etc/rsyslog.d/41-kernel.conf

  • Test OOM

    systemd-run --user --scope -p MemoryMax=1K vi /var/log/syslog

Suppress node-exporter's NodeOOM

  • Ensure the syslog hostname matches the node-exporter hostname label

  • Add inhibit_rules to alertmanager.yml so that NodeOOM alert will supressed when SysOOM is fired

    - "equal":
  - "hostname"
  - "severity"
  "source_matchers":
  - "alertname = SysOOM"
  "target_matchers":
  - "alertname = NodeOOM"

About

Send details to Alertmanager when an Out-Of-Memory (OOM) event occurs.

Topics

linux ops syslog alertmanager oom

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages