Prometheus: a short introduction

This is a more-or-less transcript of a talk I recently gave at our /dev/øl conference at RiksTV. The context was to talk a bit about some of the great features of Prometheus, and hopefully persuade my colleagues that we should...

Building a secure bastion host, or, 50 ways to kill your server

Bastion (noun) A projecting part of a fortification A special purpose computer on a network specifically designed and configured to withstand attacks If you deploy servers to a private network, then you also need a way to connect to them....

Testing Packer builds with Serverspec

Lately I’ve been working on building base AMIs for our infrastructure using Packer, and verifying these images with Serverspec. In the opening stages my workflow looked like: Build AMI with Packer Launch instance based on AMI Run Serverspec tests against...

TIL how to (and how not to) chain logstash instances

We have a legacy ELK-stack that has been struggling somewhat lately. We decided to make a new ELG-stack (Graylog replacing Kibana) in parallel, so that we could have both systems running with live data for some time before we flipped...

Using Graylog's Rest API

Lately I’ve been working on setting up a logging stack consisting of the ELG components - that is, ElasticSearch, Logstash, and Graylog. Obviously we’re doing automated installs of everything, but in the case of Graylog it turned out that the...