open telemetry on kubernetes

Author: marcel-dempers

monitoring/opentelemetry/kubernetes/README.md

@@ -0,0 +1,225 @@
+# Introduction to OpenTelemetry Operator
+
+OpenTelemetry Operator [documentation](https://opentelemetry.io/docs/platforms/kubernetes/operator/)
+
+## We need a Kubernetes cluster
+
+Lets create a Kubernetes cluster to play with using [kind](https://kind.sigs.k8s.io/docs/user/quick-start/)
+
+```
+kind create cluster --name otel --image kindest/node:v1.34.0
+```
+
+Test our cluster:
+
+```
+kubectl get nodes
+NAME                 STATUS   ROLES           AGE   VERSION
+otel-control-plane   Ready    control-plane   40s   v1.34.0
+```
+
+## Helm charts
+
+### OpenTelemetry Operator chart
+```
+helm repo add open-telemetry https://open-telemetry.github.io/opentelemetry-helm-charts
+helm repo update
+
+helm search repo open-telemetry --versions
+```
+
+We'll install version `0.93.0` at the time of this guide.
+I would suggest to make sure the version you pick is compatible with the Kubernetes version you are running. </br> 
+
+```
+OTEL_VERSION=0.93.0
+```
+
+### Cert-manager chart
+
+We will need cert-manager deployed which Otel uses for local TLS certificate management
+
+```
+helm repo add jetstack https://charts.jetstack.io
+
+helm search repo jetstack --versions
+```
+
+We'll install version `v1.18.2` of cert-manager at the time of this guide which is compatible with our Kubernetes version. </br>
+
+```
+CERTMANAGER_VERSION=v1.18.2
+```
+
+### Install helm charts 
+
+Install cert-manager:
+
+```
+helm install \
+cert-manager jetstack/cert-manager \
+--namespace cert-manager \
+--create-namespace \
+--version $CERTMANAGER_VERSION \
+--set crds.enabled=true \
+--set startupapicheck.timeout="5m"
+```
+
+Install OpenTelemetry Operator:
+
+```
+helm install opentelemetry-operator open-telemetry/opentelemetry-operator \
+--namespace opentelemetry-operator-system \
+--create-namespace \
+--version $OTEL_VERSION \
+--values=monitoring/opentelemetry/kubernetes/values.yaml
+```
+
+View our install: 
+
+```
+kubectl get pods -n cert-manager
+kubectl get pods -n opentelemetry-operator-system
+```
+
+## Create a Collector
+
+In this guide I copied a starter collector from the [official documentation](https://opentelemetry.io/docs/platforms/kubernetes/operator/#getting-started) and changed some of the values. 
+
+To split out the guides, we'll have separate collectors for logs, metrics and traces.
+
+Let's deploy our collectors in a central `monitoring` namespace:
+
+```
+
+kubectl create namespace monitoring
+
+kubectl apply -n monitoring -f monitoring/opentelemetry/kubernetes/collector-tracing.yaml
+```
+
+View our collector:
+
+```
+kubectl -n monitoring get pods
+kubectl -n monitoring get svc
+```
+
+## Tracing
+
+### Instrumentation 
+
+To start receiving traces, we'll be using the OpenTelemetry [auto instrumentation](https://opentelemetry.io/docs/platforms/kubernetes/operator/automatic/) to inject the instrumentation into our Kubernetes pods. 
+
+To make use of the auto injection for Opentelemetry, we use the `Instrumentation` resources. 
+
+Note that I am creating this in the default namespace next to where my applications are. 
+
+```
+kubectl apply -f monitoring/opentelemetry/kubernetes/instrumentation.yaml
+```
+
+### Deploy Microservices
+
+Build applications: 
+
+```
+docker compose --file monitoring/opentelemetry/docker-compose.yaml build
+```
+
+Load images into `kind`:
+
+```
+kind load docker-image aimvector/service-mesh:videos-web-1.0.0 --name otel
+kind load docker-image aimvector/service-mesh:playlists-api-1.0.0 --name otel
+kind load docker-image aimvector/service-mesh:videos-api-1.0.0 --name otel
+```
+
+```
+kubectl apply -f monitoring/opentelemetry/applications/playlists-api/
+kubectl apply -f monitoring/opentelemetry/applications/playlists-db/
+kubectl apply -f monitoring/opentelemetry/applications/videos-web/
+kubectl apply -f monitoring/opentelemetry/applications/videos-db/
+kubectl apply -f monitoring/opentelemetry/applications/videos-api/
+```
+
+Generate some traffic with `port-forward` 
+
+```
+kubectl port-forward svc/videos-web 80:80
+kubectl port-forward svc/playlists-api 81:80
+```
+
+### Tracing Data Store
+
+In this guide, we'll use a Tempo database for tracing data
+
+```
+helm repo add grafana https://grafana.github.io/helm-charts
+helm repo update
+
+helm search repo  grafana/tempo
+
+TEMPO_VERSION=1.23.3
+
+helm upgrade tempo grafana/tempo \
+    --create-namespace \
+    --namespace grafana \
+    --version $TEMPO_VERSION \
+    --values monitoring/opentelemetry/kubernetes/tempo.yaml
+```
+
+### Metrics Data Store
+
+In this guide, we'll use a Prometheus for our metrics data
+
+```
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm search repo prometheus-community --versions
+
+PROMETHEUS_STACK_VERSION=77.5.0
+
+helm install kube-prometheus-stack prometheus-community/kube-prometheus-stack \
+  --version ${PROMETHEUS_STACK_VERSION} \
+  --namespace prometheus-operator-system \
+  --create-namespace \
+  --set prometheusOperator.enabled=true \
+  --set prometheusOperator.nodeSelector."kubernetes\.io/os"=linux \
+  --set prometheusOperator.fullnameOverride="prometheus-operator" \
+  --set prometheusOperator.manageCrds=true \
+  --set alertmanager.enabled=false \
+  --set grafana.enabled=false \
+  --set prometheus-node-exporter.enabled=false \
+  --set nodeExporter.enabled=false \
+  --set kubeStateMetrics.enabled=false \
+  --set prometheus.enabled=false
+
+kubectl -n prometheus-operator-system get pods 
+
+# Deploy our dedicated Prometheus for metrics storage
+
+kubectl apply -n monitoring -f monitoring/opentelemetry/kubernetes/prometheus.yaml
+```
+
+### Dashboards
+
+In this guide I use a simple Grafana for dashboards
+
+```
+helm search repo grafana/grafana
+
+GRAFANA_VERSION=9.4.4
+
+helm install grafana grafana/grafana \
+  --namespace grafana \
+  --version $GRAFANA_VERSION \
+  --values monitoring/opentelemetry/kubernetes/grafana.yaml
+
+```
+
+### Access Grafana 
+
+We can `port-forward` to Grafana
+
+```
+kubectl -n grafana port-forward svc/grafana 3000:80
+```

monitoring/opentelemetry/kubernetes/collector-tracing.yaml

@@ -0,0 +1,45 @@
+apiVersion: opentelemetry.io/v1beta1
+kind: OpenTelemetryCollector
+metadata:
+  name: trace-collector
+spec:
+  image: ghcr.io/open-telemetry/opentelemetry-collector-releases/opentelemetry-collector-contrib:0.131.1
+  config:
+    receivers:
+      otlp:
+        protocols:
+          grpc:
+            endpoint: 0.0.0.0:4317
+          http:
+            endpoint: 0.0.0.0:4318
+    processors:
+      memory_limiter:
+        check_interval: 1s
+        limit_percentage: 75
+        spike_limit_percentage: 15
+      batch:
+        send_batch_size: 10000
+        timeout: 10s
+
+    exporters:
+      # NOTE: Prior to v0.86.0 use `logging` instead of `debug`.
+      debug: {}
+      otlp/tempo:
+        endpoint: "http://tempo.grafana.svc.cluster.local:4317"
+        tls:
+          insecure: true
+      prometheusremotewrite:
+        endpoint: "http://prometheus-operated:9090/api/v1/write"
+        tls:
+          insecure: true
+          insecure_skip_verify: true
+    service:
+      pipelines:
+        traces:
+          receivers: [otlp]
+          processors: [memory_limiter, batch]
+          exporters: [debug, otlp/tempo]
+        metrics:
+          receivers: [otlp]
+          processors: [batch]
+          exporters: [prometheusremotewrite]

monitoring/opentelemetry/kubernetes/grafana.yaml

@@ -0,0 +1,20 @@
+datasources:
+  datasources.yaml:
+    apiVersion: 1
+    datasources:
+    - name: Prometheus
+      type: prometheus
+      url: http://prometheus-operated.monitoring.svc.cluster.local:9090
+      access: proxy
+      isDefault: true
+      jsonData:
+        httpMethod: GET
+    - name: Tempo
+      type: tempo
+      url: http://tempo.grafana.svc.cluster.local:3200
+      access: proxy
+      isDefault: false
+      jsonData:
+        httpMethod: GET
+        serviceMap:
+          datasourceUid: 'Prometheus'

monitoring/opentelemetry/kubernetes/instrumentation.yaml

@@ -0,0 +1,33 @@
+apiVersion: opentelemetry.io/v1alpha1
+kind: Instrumentation
+metadata:
+  name: app-instrumentation
+spec:
+  exporter:
+    endpoint: http://trace-collector-collector.monitoring.svc.cluster.local:4318
+  propagators:
+    - tracecontext
+    - baggage
+  sampler:
+    type: parentbased_traceidratio
+    argument: '1'
+  dotnet:
+    env:
+      - name: OTEL_EXPORTER_OTLP_TRACES_PROTOCOL
+        value: "grpc"
+      - name: OTEL_LOG_LEVEL
+        value: "error"
+      - name: OTEL_DOTNET_AUTO_LOG_DIRECTORY
+        value: /tmp
+      - name: "OTEL_DOTNET_AUTO_METRICS_INSTRUMENTATION_ENABLED"
+        value: "true"
+      - name: "OTEL_DOTNET_AUTO_METRICS_INSTRUMENTATION_ASPNETCORE_ENABLED"
+        value: "true"
+      - name: "OTEL_DOTNET_AUTO_METRICS_INSTRUMENTATION_HTTPCLIENT_ENABLED"
+        value: "true"
+  go:
+    env:
+      - name: OTEL_EXPORTER_OTLP_PROTOCOL
+        value: "grpc"
+      - name: OTEL_PROPAGATORS
+        value: "tracecontext,baggage"

monitoring/opentelemetry/kubernetes/prometheus.yaml

@@ -0,0 +1,15 @@
+apiVersion: monitoring.coreos.com/v1
+kind: Prometheus
+metadata:
+  name: prometheus
+spec:
+  enableRemoteWriteReceiver: true
+  enableFeatures:
+    - remote-write-receiver
+  evaluationInterval: 30s
+  imagePullPolicy: IfNotPresent
+  nodeSelector:
+    kubernetes.io/os: linux
+  replicas: 1
+  retention: 10d
+  scrapeInterval: 30s

monitoring/opentelemetry/kubernetes/tempo.yaml

@@ -0,0 +1,13 @@
+server:
+  http_listen_port: 3200
+tempo:
+  metricsGenerator:
+    # The metricsGenerator component converts traces into Prometheus metrics.
+    enabled: true
+    remoteWriteUrl: "http://prometheus-operated.monitoring.svc.cluster.local:9090/api/v1/write"
+  overrides:
+    defaults:
+      metrics_generator:
+        processors:
+        - service-graphs
+        - span-metrics

monitoring/opentelemetry/kubernetes/values.yaml

@@ -0,0 +1,3 @@
+# https://github.com/open-telemetry/opentelemetry-helm-charts/tree/main/charts/opentelemetry-operator
+nodeSelector:
+  "kubernetes.io/os": linux