Upgrade to Pro — share decks privately, control downloads, hide ads and more …

incident-debugging.pdf

Rafael Jesus
December 13, 2019
0
49

 incident-debugging.pdf

Rafael Jesus

December 13, 2019
Tweet

More Decks by Rafael Jesus

See All by Rafael Jesus
Observability Deep Dive
rafaeljesus
0
84
alerting-deep-dive.pdf
rafaeljesus
0
44
monitoring-prometehus-thanos.pdf
rafaeljesus
0
82
Adopting SLO and Error Budget
rafaeljesus
1
100
Monitoring at HelloFresh
rafaeljesus
1
230
Effective Alerting
rafaeljesus
0
190
SLOs and Error Budget
rafaeljesus
0
160
Service Level Monitoring
rafaeljesus
1
100
Observability with Distributed Tracing
rafaeljesus
0
47

Featured

See All Featured
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k
How to train your dragon (web standard)
notwaldorf
88
5.7k
RailsConf 2023
tenderlove
29
900
Designing Experiences People Love
moore
138
23k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
191
16k
Docker and Python
trallard
40
3.1k
4 Signs Your Business is Dying
shpigford
180
21k
Building a Scalable Design System with Sketch
lauravandoore
459
33k
What’s in a name? Adding method to the madness
productmarketing
PRO
22
3.1k
Code Reviewing Like a Champion
maltzj
520
39k
Side Projects
sachag
452
42k
GraphQLの誤解/rethinking-graphql
sonatard
67
10k

Transcript

  1. Incident Debugging

  2. Workflow Instrument service and infrastructure layer Set up SLIs that

    reflects the overall health of the application Set up SLOs that reflects the amount of downtime that you aim to support Respond to alerts when they are triggered After recovery, assess how effective instrumentation was, make plans to refine it if necessary

  3. Debugging latency & 5xx errors SloLatencyTooHigh alert goes off, first

    steps: Get the 99th, 95th response time broken down by service , http method and status_code Check upstream service dependencies latency/resource utilization Check outbound TCP connections request size, rate Check the node resource usage the service runs at If node is saturated, DNS queries will be either slow or fail
  4. None

  5. DNS issues in k8s lookup("server", "A") // all lookups bellow

    are triggered by a single lookup lookup("server", "AAAA") lookup("server.platform.svc.cluster.local", "A") lookup("server.platform.svc.cluster.local", "AAAA") lookup("server.svc.cluster.local", "A") lookup("server.svc.cluster.local", "AAAA") lookup("server.cluster.local", "A") lookup("server.cluster.local", "AAAA") # cat /etc/resolv.conf nameserver 169.254.20.10 search platform.svc.cluster.local svc.cluster.local cluster.local options ndots: 5 timeout:1 attempts:5

  6. Conntrack Kernel module that tracks in/out UDP connections Table format:

    src + dst IP, src + dst port and connection state conntrack -L tcp ESTABLISHED src=172.24.110.67 dst=172.24.124.188 sport=29290 dport=31520 src=172.24.44.248 dst=172.24.124.188 sport=80 dport=29290

  7. The Bug There is a race condition in conntrack When

    two packets are sent via the same socket at the same time Packets get dropped DNS lookup remains in waiting state until it times out Only happens for UDP

  8. Watch out AWS VPC Limits Max of 1024 packets per

    sec and interface for aws dns server Remember there were 8 lookups out of one DNS resolution

  9. Solution

  10. CDN Cache Miss Latency can get significantly increased by missing

    a cache rule in CDN

  11. Analyzing Prometheus Cardinality https://www.robustperception.io/using-tsdb-analyze-to-investigate- churn-and-cardinality

  12. Thank you