Page MenuHomePhabricator
Create Task
Maniphest T353224

Envoy telemetry not available for cirrus-streaming-updater@staging-eqiad
Closed, ResolvedPublic
Actions

Description

Envoy telemetry is not available for a flink application running in wikikube@staging.
The service mesh works as expected, it's just that we don't find the namespace in the dashboard https://grafana-rw.wikimedia.org/d/b1jttnFMz/envoy-telemetry-k8s.
Looking at specific metrics like the envoy_cluster_upstream_rq{kubernetes_namespace="cirrus-streaming-updater"} we can't find anything related to envoy and this namespace in eqiad prometheus@k8s-staging.
Similar services using the same flink-app chart (rdf-streaming-updater and mw-page-content-change-enrich) do appear to have their envoy metrics properly propagated to prometheus.

Details

SubjectRepoBranchLines +/-
flink-app: include mesh.networkpolicy.ingressoperations/deployment-chartsmaster+2 -1
Customize query in gerrit

Event Timeline

dcausse created this task.Dec 12 2023, 9:27 AM
Restricted Application added a project: Discovery-Search. · View Herald TranscriptDec 12 2023, 9:27 AM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
dcausse updated the task description. (Show Details)Dec 12 2023, 9:40 AM
JMeybohm subscribed.Dec 12 2023, 4:31 PM

I'm not sure why it works for the other two. Prometheus does have established tcp connections to pods from mw-p-c-c-e but I can't create new ones because there is no networkpolicy that allows ingress traffic on port 1667. Maybe this is because of a recent networkpolicy change (existing connections are not effected by policy changes).

The flink-app chart should include the mesh.networkpolicy.ingress template in networkpolicy.yaml to allow connections to the mesh.telemetry.port.

gerritbot added a comment.Dec 12 2023, 4:47 PM

Change 982434 had a related patch set uploaded (by DCausse; author: DCausse):

[operations/deployment-charts@master] flink-app: include mesh.networkpolicy.ingress

https://gerrit.wikimedia.org/r/982434

gerritbot added a project: Patch-For-Review.Dec 12 2023, 4:47 PM
dcausse added a comment.Dec 12 2023, 4:51 PM

@JMeybohm thanks for taking a look! we'll include this template to see if this solves the issue.

dcausse edited projects, added Discovery-Search (Current work); removed Discovery-Search.Dec 12 2023, 4:51 PM
dcausse moved this task from Incoming to Needs review on the Discovery-Search (Current work) board.
gerritbot added a comment.Dec 12 2023, 5:05 PM

Change 982434 merged by jenkins-bot:

[operations/deployment-charts@master] flink-app: include mesh.networkpolicy.ingress

https://gerrit.wikimedia.org/r/982434

Maintenance_bot removed a project: Patch-For-Review.Dec 12 2023, 5:10 PM
dcausse moved this task from Needs review to Needs Reporting on the Discovery-Search (Current work) board.Dec 12 2023, 5:22 PM

Confirming that envoy metrics are now properly flowing to prometheus for the cirrus-streaming-updater namespace

JMeybohm removed a project: serviceops.Dec 12 2023, 5:25 PM

Sweet! Untagging us

Gehel closed this task as Resolved.Dec 15 2023, 9:00 AM
Gehel claimed this task.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits