Grafana LGTM (Loki, Grafana, Tempo, Mimir) + Alloy observability stack setup on top of EKS. Provisioned following GitOps with ArgoCD and Terraform integrated with GitHub Actions CI/CD.
Data Flow Overview
CI/CD Overview
- https://grafana.sandbox.lgtm.pvlbnkl.xyz (credentials are stored in AWS Secrets Manager)
- https://argocd.sandbox.lgtm.pvlbnkl.xyz (credentials are stored in AWS Secrets Manager)
- https://foo.sandbox.lgtm.pvlbnkl.xyz/foo
- https://foo.sandbox.lgtm.pvlbnkl.xyz/cow
- https://bar.sandbox.lgtm.pvlbnkl.xyz/bar
- Install pre-commit
- Initialize pre-commit hooks
pre-commit install- Infrastructure as Code
- GitOps (ArgoCD)
- CI/CD (Github Actions)
- pre-commit hooks validate Terraform code
- Centralized observability
This project relies on community-driven CNCF tools to ensure stability in development and support. Also, no licensing fees help to reduce the costs
Terraform is the leading IaC tool that allows us to define and provision infrastructure using a simple configuration language. It supports multiple cloud providers and has a large community of contributors. Also, it has a wide selection of ready-to-use AWS modules.
GitHub is the most popular Git repository hosting service. It has a wide selection of integrations and the largest community. GitHub Actions is a CI/CD tool that is tightly integrated with GitHub, has a free tier for public repositories, and has a wide selection of ready-to-use actions.
ArgoCD is a declarative, GitOps continuous delivery tool for Kubernetes. Its direct competitor is FluxCD. However, FluxCD's further development is uncertain due to the shutdown of Weaveworks- its main sponsor (Gitlab should continue the support).
I tend to choose managed services from cloud providers to reduce the operational overhead, thus EKS is a great choice. It is provisioned with a minimal set of addons to reduce the operational complexity and move configuration towards k8s-centric development.
- ebs-csi-driver (EBS-backed volumes for stateful applications)
- aws-load-balancer-controller (AWS-native load balancer controller)
- karpenter (AWS-recommended autoscaler)
- external-dns (DNS records management. Removes the need to manage Route53 records via Terraform which is often painful because of the dynamic nature of load balancer DNS names)
Alloy is used as a monitoring data collector. It replaces Grafana Agent, supports various integrations. However, it is quite fresh yet. Documentation is not that good and the community is not that big.
- Add new environment to
terraform/environmentsdirectory and add it as workspace in the CI/CD pipeline. - Review output of the
terraform planposted as a comment in your PR and merge it to deploy the cluster
Current ArgoCD deployment may serve as the control plane for the new cluster. You need to add a new cluster and config files.
- add new cluster as Secret in the argocd/templates directory
- create new or update
applicationset-apps.yamlinargocd/templates/applicationset-apps.yamlto include the new cluster and its customizedvalues.yamlvia [matrix generator] (https://argo-cd.readthedocs.io/en/stable/operator-manual/applicationset/Generators-Matrix/) - add customized
values.yamlfor the components where necessary - configure Grafana datasources
- Grafana Alloy is quite fresh and has limited documentation, lots of issues are filed across LGTM repos to update the configuration references. You may face issues with the configuration and integrations
- Add cost management tools to monitor the costs of the infrastructure (OpenCost or AWS Split Cost Allocation Data)
- Cost optimization
- Consider merging ALBs into a single one with multiple listeners
- Enable CoreDNS autoscaling
- Enable VPC endpoints:
- S3
- ECR
- SSM
- OTEL
- Refactor
fooandbarapplications to use automatic instrumentation instead of manual
- Refactor
- Grafana
- Cover data sources configuration with code
- Alloy
- Introduce
DaemnoSetfor log collection via/var/logto reduce K8S API load
- Introduce
- ArgoCD
- Migrate
argocd/templatesto argocd-apps chart - Add matrix generator to better support multiple clusters with customized per-cluster values
- Migrate
- Terraform CI/CD