Skip to content
/ chowkidar Public

Monitor SSH activities across your data-centers. ⛩

License

MIT license
2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

vedantrathore/chowkidar

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
agent
agent
 
 
deployment
deployment
 
 
server
server
 
 
.gitignore
.gitignore
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ss.png
ss.png
 
 

Repository files navigation

Chowkidar

Maintenance Open Source Love svg1 MIT Licence

A tool to monitor all the ssh activity in your datacenters.

Screenshot

Architecture

Chowkidar consists of two components:

  • Agent: This is deployed on your servers you want to monitor. Runs as a docker daemon container. It's made in python and uses celery and redis to ensure minimal data loss asynchronously.

  • Server: A central processing unit which aggergates data from all servers and displays in a grafana dashboard. It's a node based webhook which parses the data and inserts it into a time-serires database (Influx DB) which is used by grafana to render the dashboards.

Server is deployed on ECS Fargate tasks with EFS mounted storage for InfluxDB and Grafana.

Deployment

Server:

  • Clone this repository

  • Configure AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY env variables with Administrator privileges

  • Create AWS SSM secrets for (refer to .env.sample):

  • INFLUXDB_USERNAME

  • INFLUXDB_PASSWORD

  • GRAFANA_USERNAME

  • GRAFANA_PASSWORD

use the following command to create the secrets:


$ aws ssm put-parameter \

--name "/chowkidar/influx/influxdb_username" \

--value "chowkidar" \

--type "SecureString" \

  

$ aws ssm put-parameter \

--name "/chowkidar/influx/influxdb_password" \

--value "chowkidar" \

--type "SecureString" \

  

$ aws ssm put-parameter \

--name "/chowkidar/influx/grafana_username" \

--value "chowkidar" \

--type "SecureString" \

  

$ aws ssm put-parameter \

--name "/chowkidar/influx/grafana_password" \

--value "chowkidar" \

--type "SecureString" \

  

$ aws ssm put-parameter \

--name "/chowkidar/influx/ipstack_access_key" \

--value "YOUR_IPSTACK_ACCESS_KEY" \

--type "SecureString" \

  • Setup and configure terraform v12.28

  • From the ./deployment/server directory run:

  • $ terraform init

  • Refer to ./deployment/server/testing.tfvars for variable configuration

  • $ terraform plan

  • Validate the plan and make sure everything is cool

  • $ terraform apply

  • This will output a DNS of the public load balancer, configure it with your domain registrar.

Agent

  • Clone this repository

  • Install and configure ansible

  • Make sure that you have SSH connectivity with the target server

  • $ cd deployment/agent && ansible-playbook install-agent.yml -extra-vars "Deploy=fresh" -i <your inventory file>

About

Monitor SSH activities across your data-centers. ⛩

Topics

python grafana dashboards

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages