Integrating Kubecost with an existing Prometheus installation can be nuanced. We recommend first installing Kubecost with a bundled Prometheus (instructions) as a dry run before integrating with an external Prometheus deployment. We also recommend getting in touch ([email protected]) for assistance.
Note: integrating with an existing Prometheus is only officially supported under Kubecost paid plans.
Kubecost requires the following dependency versions:
- node-exporter - v0.16 (May 18)
- kube-state-metrics - v1.6.0 (May 19)
- cAdvisor - kubelet v1.11.0 (May 18)
-
Copy values.yaml and update the following parameters:
prometheus.fqdnto match your local Prometheus with this formathttp://<prometheus-server-service-name>.<prometheus-server-namespace>.svcprometheus.enabledset tofalse
Pass this updated file to the Kubecost helm install command with
--values values.yaml -
Have your Prometheus scrape the cost-model
/metricsendpoint. These metrics are needed for reporting accurate pricing data. Here is an example scrape config:
- job_name: kubecost
honor_labels: true
scrape_interval: 1m
scrape_timeout: 10s
metrics_path: /metrics
scheme: http
dns_sd_configs:
- names:
- kubecost-cost-analyzer.<namespace-of-your-kubecost>
type: 'A'
port: 9003
This config needs to be added under extraScrapeConfigs in Prometheus configuration. Example
You can confirm that this job is successfully running with the Targets view in Prometheus.
Kubecost uses Prometheus recording rules to enable certain product features and to help improve product performance. These are recommended additions, especially for medium and large-sized clusters using their own Prometheus installation. You can find the current set of recording rules used in the rules block under prometheus.server.serverFiles in this values.yaml file.
Note: Kubecost recording rules were most recently updated in v1.65.0
Kubecost uses container_name and pod_name labels on cadvisor metrics. For clusters running k8s v1.16+, the following relabel config creates the expected labels on cadvisor metrics:
metric_relabel_configs:
- source_labels: [ container ]
target_label: container_name
regex: (.+)
action: replace
- source_labels: [ pod ]
target_label: pod_name
regex: (.+)
action: replace
On recent versions of Prometheus Operator, cadvisor instance labels do not match internal Kubernetes node names. This causes usage data to not be registered correctly in Kubecost. The solution is to add the following block into your kubelet/cadvisor scrape config.
metric_relabel_configs:
- source_labels: [node]
separator: ;
regex: (.*)
target_label: instance
replacement: $1
action: replace
Note that this is optional for efficiency metrics: opencost/opencost#556 for a description of what will be missing if this step is skipped.
You'll need to add the following relabel config to the job that scrapes the node exporter daemonet.
- job_name: 'kubernetes-service-endpoints'
kubernetes_sd_configs:
- role: endpoints
relabel_configs:
- source_labels: [__meta_kubernetes_pod_node_name]
action: replace
target_label: kubernetes_node
Common issues include the following:
- Wrong Prometheus FQDN: evidenced by the following pod error message
No valid prometheus config file at ...and the init pods hanging. We recommend runningcurl <your_prometheus_url>/api/v1/status/configfrom a pod in the cluster to confirm that your Prometheus config is returned. Here is an example, but this needs to be updated based on your Prometheus address:
kubectl exec kubecost-cost-analyzer-db55d88f6-fr6kc -c cost-analyzer-frontend -n kubecost \
-- curl http://kubecost-prometheus-server.kubecost/api/v1/status/config
If the config file is not returned, this is an indication that an incorrect Prometheus address has been provided. If a config file is returned from one pod in the cluster but not the Kubecost pod, then the Kubecost pod likely has its access restricted by a network policy, service mesh, etc.
-
Prometheus throttling -- ensure Prometheus isn't being CPU throttled due to a low resource request.
-
Wrong dependency version -- see the section above about Requirements
-
Missing scrape configs -- visit Prometheus Target page (screenshot above)
-
Data incorrectly is a single namespace -- make sure that honor_labels is enabled
You can visit Settings in Kubecost to see basic diagnostic information on these Prometheus metrics:
Using an existing Grafana deployment can be accomplished with either of the following two options:
- Option: Directly link to an external Grafana. After Kubecost installation, visit Settings and update Grafana Address to a URL (e.g. http://demo.kubecost.com/grafana) that is visible to users accessing Grafana dashboards. This variable can alternatively be passed at the time you deploy Kubecost via the
kubecostProductConfigs.grafanaURLparemeter in values.yaml. Next, import Kubecost Grafana dashboards as JSON from this folder.
- Option: Deploy with Grafana sidecar enabled. Passing the Grafana parameters below in your values.yaml will install ConfigMaps for Grafana dashboards that will be picked up by the Grafana sidecar if you have Grafana with the dashboard sidecar already installed.
global:
grafana:
enabled: false
domainName: cost-analyzer-grafana.default #example where format is <service-name>.<namespace>
proxy: false
grafana:
sidecar:
dashboards:
enabled: true
datasources:
enabled: false
For Option 2, ensure that the following flags are set in your Operator deployment:
1. sidecar.dashboards.enabled = true
2. sidecar.dashboards.searchNamespace isn't restrictive, use ALL if Kubecost runs in another ns