The Zen of Prometheus #1783
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,118 @@ | ||
| --- | ||
| title: The Zen of Prometheus | ||
| sort_rank: 9 | ||
| --- | ||
|
|
||
| # The Zen of Prometheus | ||
|
|
||
| **The Zen of Prometheus** is beginner friendly set of core values and guidelines for instrumenting your applications and writing idiomatic alerts using Prometheus. | ||
| This is a document that's intended to maintained by the Prometheus community. Feel free to [contribute](https://github.com/prometheus/docs). | ||
|
|
||
| ## Instrument first, ask questions later | ||
|
|
||
| During development you will never know what questions you need to ask later. Software needs good instrumentation, it's not optional. Metrics are cheap. Use them generously. | ||
|
|
||
| The First and the most important rule, if you have to remember only one thing remember this one. Instrument all the things! | ||
|
|
||
| ## Measure what users care | ||
|
|
||
|
|
||
| Do your users care if your database servers are down? Do they care about your CPU saturation? No, they care about what they experience. They care about whether they can access the page that they have requested and their results are fresh. Think in terms of latencies and availability. Let your [SLO](https://landing.google.com/sre/sre-book/chapters/service-level-objectives/)s guide your instrumentation. | ||
|
There was a problem hiding this comment. Uhm, you should be measuring all of those things. You're conflating metrics with alerting here. There was a problem hiding this comment. I think this should be phrased in a way that measuring all of those things is still important, but that instrumentation should additionally be suitable for SLO-based alerting. |
||
|
|
||
| [RED](https://grafana.com/blog/2018/08/02/the-red-method-how-to-instrument-your-services/), [USE](http://www.brendangregg.com/usemethod.html) and [The Four Golden Signals](https://landing.google.com/sre/sre-book/chapters/monitoring-distributed-systems/#xref_monitoring_golden-signals) are known frameworks to get you started. | ||
|
|
||
| This doesn't necessarily mean that you should ignore causal metrics. Have them, spread them liberally. | ||
|
|
||
| Use causal metrics to answer why something is broken. | ||
|
|
||
| ## Labels are the new hierarchies | ||
|
|
||
| **Labels are the new hierarchies**, yet more powerful and flexible. Labels are what make Prometheus strong. Using labels, one can group and aggregate measurements afterwards. Slice and dice using Labels. Remember [Instrument first, ask questions later](#instrument-first-ask-questions-later), provide much context as possible. | ||
|
|
||
| However, you have to *use labels with care*. The reasons will explain in subsequent rules. | ||
|
|
||
| ## Avoid missing metrics | ||
|
|
||
| Time series that are not present until something happens are difficult to deal with. To avoid this, export 0 (or NaN if 0 would be misleading) for any time series you know may exist in advance. You have to initialize your metrics with the zero values to prevent broken dashboards and misfiring alerts. For more detailed explanation check out [Existential issues with metrics](https://www.robustperception.io/existential-issues-with-metrics). | ||
|
There was a problem hiding this comment. NaN shouldn't be used like this. You don't have to expose 0, but it's much tricker to deal with correctly if you don't. |
||
| And also remember, labels create timeseries, so same goes for your labels. Your client libraries can't know what labels you would have. Initialize your metrics with the labels that you would have. | ||
|
|
||
| ## Cardinality Matters | ||
|
|
||
| Every unique set of labels create a new timeseries. Use labels with care watch out what you put into your labels. Avoid cardinality explosion, unbounded labels will blow up Prometheus. And keep in mind that labels are multiplicative. You will have multiple labels, multiple target labels and targets. | ||
|
There was a problem hiding this comment. The number of target labels doesn't matter for cardinality. |
||
|
|
||
| Prometheus performance almost always comes down to one thing: label cardinality. | ||
|
|
||
| Always remember that [Cardinality is key](https://www.robustperception.io/cardinality-is-key). | ||
|
|
||
| ## Naming is hard | ||
|
|
||
| One of the hardest problem in computer science. Metric name should only have a single meaning within a single job. And you should always guard against metric name collisions among the jobs on your system. | ||
|
There was a problem hiding this comment. A metric name What do you mean by "guard against"? It's perfectly normal for different jobs to share metric names, such as process_cpu_seconds_total. As worded this seems to be arguing for prefixing metric names with job names. |
||
|
|
||
| *Respect conventions over preferences*. Conventions are no one's favorite, yet conventions are everyone's favorite. See the documentation on [Naming](https://prometheus.io/docs/practices/naming/) conventions for the nitty-gritty details. | ||
|
|
||
| One other benefit of following the conventions is that you don't need to reinvent the wheel. You can benefit from the tools that's out there, such as [Monitoring Mixins](https://monitoring.mixins.dev/). | ||
|
There was a problem hiding this comment. I don't see what this has to do with naming of your own metrics. |
||
|
|
||
| --- | ||
|
|
||
| ## Counters rule and gauges suck | ||
|
There was a problem hiding this comment. This is overly harsh, lots of things can only be reasonably done with gauges - and some things require both. There was a problem hiding this comment. It's not a nuanced statement, it's a proverb! It refers to not using gauges for something that can be represented as a counter. That's explained in the text below. |
||
|
|
||
| If you can express as a counter, use a counter and do everything else later. Counters are powerful, you can derive lots of things from them. Remember [Instrument first, ask questions later](#instrument-first-ask-questions-later). Especially, please don't add metrics for aggregations, PromQL can do it for you. | ||
|
|
||
| ## First the rate, then aggregate | ||
|
|
||
| Be aware of [counter resets](https://www.robustperception.io/how-does-a-prometheus-counter-work). | ||
| As stated in [Rate then sum, never sum then rate](https://www.robustperception.io/rate-then-sum-never-sum-then-rate). | ||
| As a rule of thumb, the only mathematical operations you can safely directly apply to a counter's values are `rate`, `irate`, `increase`, and `resets`. Anything else will cause you problems. | ||
|
|
||
| ## If you can log it, you can have a metric for it | ||
|
|
||
| Logs and metrics complement each other: metrics give the insight that something isn't working as expected and logs give you the "what is happening". | ||
|
|
||
| Whenever you handle an error (either by returning it or logging it), you should ask yourself whether you can add some metrics and be able to alert on it. Spread the metrics liberally. Remember metrics are cheap. | ||
|
There was a problem hiding this comment. This can be clearer by mentioning counters |
||
|
|
||
| ## One does not simply use Histograms | ||
|
|
||
| Histograms are powerful. | ||
|
|
||
| Creating a correct bucket layout for your histograms is an art. To ensure usefulness of your observations and correctness of your alerts, you have come up with a meaningful bucket layout. And keep in mind that they are [cumulative](https://www.robustperception.io/why-are-prometheus-histograms-cumulative). This is also somewhat conflicting with [Instrument first, ask questions later](#instrument-first-ask-questions-later) because you need to have idea about your latencies before you even measure. To circumvent this issue you can take and iterative approach or use an event system to obtain your latency distribution. | ||
|
There was a problem hiding this comment. Cumulativeness doesn't seem relevant to the point here. |
||
|
|
||
| And as always, let your [SLO](https://www.youtube.com/watch?v=X99X-VDzxnw)s guide your bucket layout, create boundaries to match your SLO. | ||
|
|
||
| The histograms underneath are just counter with labels; where bucket boundaries used as labels. Be precautious while adding additional labels to your histograms. Remember *Labels are multiplicative* and [Cardinality Matters](#cardinality-matters). | ||
|
|
||
|
|
||
| --- | ||
|
|
||
| ## If you can graph it, you can alert on it | ||
|
|
||
| You can't look at dashboards 24/7. Prometheus unified metrics, dashboarding, and alerting. PromQL is the core of every Prometheus alert, and a PromQL query is the source of any graph on a dashboard. That is very powerful. Use it. | ||
|
There was a problem hiding this comment. unifies I doubt we were first. |
||
|
|
||
| ## If you run it, then you should put an alert on it | ||
|
|
||
| Always have an alert -*at least*- on presence and healthiness of your targets. You can't that rely on the things and take action that you can't observe. | ||
|
|
||
|
|
||
| Avoid missing targets and unhealthy targets. All of the client libraries provides `up` metric by default. Use it. | ||
|
There was a problem hiding this comment. Client libraries do not produce up, that comes from Prometheus. |
||
|
|
||
| ## Alerts should be urgent, important, actionable, and real | ||
|
|
||
| [Alerts should be urgent, important, actionable, and real](https://www.robustperception.io/when-to-alert-with-prometheus). As plain as it goes. | ||
|
|
||
| And don't over alert, alert-fatigue is real. | ||
|
|
||
| ## Symptom-based alerts for paging, caused-based for troubleshooting | ||
|
|
||
| Similar to [Measure what users care most about](#measure-what-users-care-most-about), alert on what *really* matters. It doesn't matter if you are CPU is saturated, as long as your users don't notice. Let your [SLO](https://www.youtube.com/watch?v=X99X-VDzxnw)s guide your alerting. | ||
| For more context [My Philosophy on Alerting](https://docs.google.com/document/d/199PqyG3UsyXlwieHaqbGiWVa8eMWi8zzAn0YfcApr8Q/edit). | ||
|
|
||
| ## Please five more minutes | ||
|
|
||
| Prometheus alerting rules let you to specify a time duration that determines after how long an alert should start firing according to given query, which is called `FOR`. If you don't specify it a single failed scrape could cause an alert to fire. You need more tolerance. Don't make it short and always specify it. And also don't make it too long. For more information check out [Setting Thresholds on Alerts](https://www.robustperception.io/setting-thresholds-on-alerts). | ||
|
There was a problem hiding this comment. It's just I'd recommend simplifying, and saying always at least 5 minutes There was a problem hiding this comment. I think "always" is too strong. I would word it more along the lines that you should only do something else if you know exactly what you are doing. |
||
|
|
||
| ## Context is king | ||
|
|
||
| Preserve common and useful labels for your alerts. They are most useful for routing and silencing. | ||
|
|
||
| --- | ||
|
|
||
| The inspiration behind the idea comes from [The Zen of Go](https://the-zen-of-go.netlify.app), [Go Proverbs](https://go-proverbs.github.io/) and [The Zen of Python](https://zen-of-python.info/). | ||
|
|
||
| *Thank you very much all others that contributed with their invaluable ideas.* | ||
| The initial rules are gather from several sources from the community, such as [Prometheus Proverbs](https://www.youtube.com/watch?v=TwH3KXKbJqM) by [Björn Rabenstein](https://github.com/beorn7), [Best Practices and Beastly Pitfalls](https://www.youtube.com/watch?v=_MNYuTNfTb4) by [Julius Volz](https://github.com/juliusv), [Patterns for Instrumenting Your Go Services](https://www.youtube.com/watch?v=LU6D5cNeHks) by [Bartek Plotka](https://github.com/bwplotka) and [Kemal Akkoyun](https://github.com/kakkoyun), [Instrumenting Applications and Alerting with Prometheus](https://www.youtube.com/watch?v=sHKWD8XnmmY) by [Simon Pasquier](https://github.com/simonpasquier) and [Robust Perception Blog](https://www.robustperception.io/blog) by [Brian Brazil](https://github.com/brian-brazil). | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A metric is cheap. Metrics are not cheap.
Metrics without labels are cheap, metrics with labels tend to blow up in cardinality. Making it seem that metrics are cheap would likely lead to more users falling into this trap.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yeah, would be good to be more nuanced here and perhaps link to the cardinality section.