collector-dmesg

Collect a count of certain kernel log messages.
A telemetry plugin.

Table of Contents

Usage

const telemetry = require('@telemetry-js/telemetry')()
const dmesg = require('@telemetry-js/collector-dmesg')

telemetry.task()
  .collect(dmesg)

Included messages

• TCP: [..] Possible SYN flooding [..]
  • Happens when net.ipv4.tcp_max_syn_backlog is exceeded
  • Suggested action: if amount of SYN is legit (not DDOS), increase tcp_max_syn_backlog
• TCP: too many orphaned sockets
  • Happens when net.ipv4.tcp_max_orphans is exceeded
  • Suggested action: if amount of orphans is legit, increase tcp_max_orphans and consider disabling tcp_orphan_retries to significantly decrease the lifetime of orphans
• TCP: out of memory [..]
  • Suggested action: tune net.ipv4.tcp_mem
• net_ratelimit: [..] callbacks suppressed
  • Can happen when too many messages are logged too fast. The kernel will suppress surplus messages and can thus also prevent the above messages from reaching us.

API

Options

Yet to document.

Install

With npm do:

npm install @telemetry-js/collector-dmesg

Acknowledgements

This project is kindly sponsored by Reason Cybersecurity Ltd.

License

MIT © Vincent Weevers