grafana
diff --git a/‎cloudflare-mixin/.lint
Lines changed: 14 additions & 0 deletions b/‎cloudflare-mixin/.lint
Lines changed: 14 additions & 0 deletions
diff --git a/‎cloudflare-mixin/Makefile
Lines changed: 35 additions & 0 deletions b/‎cloudflare-mixin/Makefile
Lines changed: 35 additions & 0 deletions
diff --git a/‎cloudflare-mixin/README.md
Lines changed: 94 additions & 0 deletions b/‎cloudflare-mixin/README.md
Lines changed: 94 additions & 0 deletions
diff --git a/‎cloudflare-mixin/alerts/alerts.libsonnet
Lines changed: 96 additions & 0 deletions b/‎cloudflare-mixin/alerts/alerts.libsonnet
Lines changed: 96 additions & 0 deletions
diff --git a/‎cloudflare-mixin/config.libsonnet
Lines changed: 16 additions & 0 deletions b/‎cloudflare-mixin/config.libsonnet
Lines changed: 16 additions & 0 deletions
@@ -0,0 +1,14 @@
+exclusions:
+  template-job-rule:
+    reason: "Prometheus datasource variable is being named as prometheus_datasource now while linter expects 'datasource'"
+  panel-datasource-rule:
+    reason: "Loki datasource variable is being named as loki_datasource now while linter expects 'datasource'"
+  template-datasource-rule:
+    reason: "Based on new convention we are using variable names prometheus_datasource and loki_datasource where as linter expects 'datasource'"
+  template-instance-rule:
+    reason: "Based on new convention we are using variable names prometheus_datasource and loki_datasource where as linter expects 'datasource'"
+  template-label-promql-rule:
+    reason: "Cloudflare GeoMap overview dashboard uses templated queries to allow user to select which query is displayed on GeoMap using variable selector."
+  panel-units-rule:
+    reason: "Custom units are used for better user experience in these panels"
+    
@@ -0,0 +1,35 @@
+JSONNET_FMT := jsonnetfmt -n 2 --max-blank-lines 1 --string-style s --comment-style s
+
+.PHONY: all
+all: build dashboards_out prometheus_alerts.yaml
+
+vendor: jsonnetfile.json
+	jb install
+
+.PHONY: build
+build: vendor
+
+.PHONY: fmt
+fmt:
+	find . -name 'vendor' -prune -o -name '*.libsonnet' -print -o -name '*.jsonnet' -print | \
+		xargs -n 1 -- $(JSONNET_FMT) -i
+
+.PHONY: lint
+lint: build
+	find . -name 'vendor' -prune -o -name '*.libsonnet' -print -o -name '*.jsonnet' -print | \
+		while read f; do \
+			$(JSONNET_FMT) "$$f" | diff -u "$$f" -; \
+		done
+	mixtool lint mixin.libsonnet
+
+dashboards_out: mixin.libsonnet config.libsonnet $(wildcard dashboards/*)
+	@mkdir -p dashboards_out
+	mixtool generate dashboards mixin.libsonnet -d dashboards_out
+
+prometheus_alerts.yaml: mixin.libsonnet alerts/*.libsonnet
+	mixtool generate alerts mixin.libsonnet -a prometheus_alerts.yaml
+
+.PHONY: clean
+clean:
+	rm -rf dashboards_out prometheus_alerts.yaml
+	
@@ -0,0 +1,94 @@
+# Cloudflare mixin
+The Cloudflare mixin is a set of configurable Grafana dashboards and alerts. 
+
+The metrics analyzed here are a part of `Cloudflare Analytics - account and zone analytics` found [here](https://developers.cloudflare.com/analytics/account-and-zone-analytics/). Pool and worker metrics will not appear until your Cloudflare instance has been configured to utilize them.
+
+The Cloudflare mixin contains the following dashboards:
+
+- Cloudflare zone overview
+- Cloudflare GeoMap overview
+- Cloudflare worker overview
+
+and the following alerts:
+
+- CloudflareHighThreatCount
+- CloudflareHighRequestRate
+- CloudflareHighHTTPErrorCodes
+- CloudflareUnhealthyPools
+- CloudflareMetricsDown
+
+## Cloudflare zone overview
+The Cloudflare zone overview dashboard provides a detailed look into the performance of the zones in your Cloudflare account. Metrics analyzed include requests, cached requests, various bandwidth numbers, page views, request status, colocations, and pool status.
+
+![First screenshot of Cloudflare zone overview dashboard](https://storage.googleapis.com/grafanalabs-integration-assets/cloudflare/screenshots/cloudflare-zone-overview-1.png)
+![Second screenshot of Cloudflare zone overview dashboard](https://storage.googleapis.com/grafanalabs-integration-assets/cloudflare/screenshots/cloudflare-zone-overview-2.png)
+
+## Cloudflare Geomap overview
+The Cloudflare Geomap overview dashboard utilizes a GeoMap panel to visualize specific metrics on a global map. The metrics utilized here are requests, bandwidth, threats, non-cached requests, and edge requests.
+
+![Screenshot of Cloudflare Geomap overview dashboard](https://storage.googleapis.com/grafanalabs-integration-assets/cloudflare/screenshots/cloudflare-geomap-overview.png)
+
+## Cloudflare worker overview
+The Cloudflare worker overview dashboard provides a look into Cloudflare Worker performance on a per script basis. Metrics include CPU time quantiles, script duration quantiles, requests, and errors.
+
+![Screenshot of Cloudflare worker overview dashboard](https://storage.googleapis.com/grafanalabs-integration-assets/cloudflare/screenshots/cloudflare-worker-overview.png)
+
+## Alerts overview
+
+- CloudflareHighThreatCount: There are detected threats targeting the zone.
+- CloudflareHighRequestRate: A high spike in requests is occurring which may indicate an attack or unexpected load.
+- CloudflareHighHTTPErrorCodes: A high number of 4xx or 5xx HTTP status codes are occurring.
+- CloudflareUnhealthyPools: There are unhealthy pools.
+- CloudflareMetricsDown: Cloudflare metrics are down.
+
+Be sure to set `alertsMetricsDownJobName` to match your environment if using a different `Job` label than the default.
+
+Default thresholds can be configured in `config.libsonnet`.
+```js
+{
+  _config+:: {
+    dashboardTags: ['cloudflare-mixin'],
+    dashboardPeriod: 'now-30m',
+    dashboardTimezone: 'default',
+    dashboardRefresh: '1m',
+
+    // CloudflareMetricsDown alert filter variable
+    alertsMetricsDownJobName: 'integrations/cloudflare',
+
+    // alerts thresholds
+    alertsHighThreatCount: 3, // count
+    alertsHighRequestRate: 150, // percentage
+    alertsHighHTTPErrorCodeCount: 100, // count
+  },
+}
+```
+
+## Install tools
+
+```bash
+go install github.com/jsonnet-bundler/jsonnet-bundler/cmd/jb@latest
+go install github.com/monitoring-mixins/mixtool/cmd/mixtool@latest
+```
+
+For linting and formatting, you would also need `jsonnetfmt` installed. If you
+have a working Go development environment, it's easiest to run the following:
+
+```bash
+go install github.com/google/go-jsonnet/cmd/jsonnetfmt@latest
+```
+
+The files in `dashboards_out` need to be imported
+into your Grafana server. The exact details will be depending on your environment.
+
+`prometheus_alerts.yaml` needs to be imported into Prometheus.
+
+## Generate dashboards and alerts
+
+Edit `config.libsonnet` if required and then build JSON dashboard files for Grafana:
+
+```bash
+make
+```
+
+For more advanced uses of mixins, see
+https://github.com/monitoring-mixins/docs.
@@ -0,0 +1,96 @@
+{
+  prometheusAlerts+:: {
+    groups+: [
+      {
+        name: 'cloudflare-alerts',
+        rules: [
+          {
+            alert: 'CloudflareHighThreatCount',
+            expr: |||
+              sum without (instance) (increase(cloudflare_zone_threats_total[5m])) > %(alertsHighThreatCount)s
+            ||| % $._config,
+            'for': '5m',
+            labels: {
+              severity: 'critical',
+            },
+            annotations: {
+              summary: 'There are detected threats targeting the zone.',
+              description:
+                (
+                  'The number of detected threats targeting the zone {{$labels.zone}} is {{ printf "%%.0f" $value }} which is greater than the threshold of %(alertsHighThreatCount)s.'
+                ) % $._config,
+            },
+          },
+          {
+            alert: 'CloudflareHighRequestRate',
+            expr: |||
+              sum without (instance) (100 * (rate(cloudflare_zone_requests_total[10m]) / clamp_min(rate(cloudflare_zone_requests_total[50m] offset 10m), 1))) > %(alertsHighRequestRate)s
+            ||| % $._config,
+            'for': '5m',
+            labels: {
+              severity: 'warning',
+            },
+            annotations: {
+              summary: 'A high spike in requests is occurring which may indicate an attack or unexpected load.',
+              description:
+                (
+                  'The rate of requests to {{$labels.zone}} is {{ printf "%%.0f" $value }}%%s of the prior 50 minute baseline which is above the threshold of %(alertsHighRequestRate)s%%s.'
+                ) % $._config,
+            },
+          },
+          {
+            alert: 'CloudflareHighHTTPErrorCodes',
+            expr: |||
+              sum without (instance) (increase(cloudflare_zone_requests_status{status=~"4.*|5.*"}[5m])) > %(alertsHighHTTPErrorCodeCount)s
+            ||| % $._config,
+            'for': '5m',
+            labels: {
+              severity: 'warning',
+            },
+            annotations: {
+              summary: 'A high number of 4xx or 5xx HTTP status codes are occurring.',
+              description:
+                (
+                  'The number of {{$labels.status}} HTTP status codes occurring in the zone {{$labels.zone}} is {{ printf "%%.0f" $value }} which is greater than the threshold of %(alertsHighHTTPErrorCodeCount)s.'
+                ) % $._config,
+            },
+          },
+          {
+            alert: 'CloudflareUnhealthyPools',
+            expr: |||
+              sum without (instance, load_balancer_name) (cloudflare_zone_pool_health_status) == 0
+            ||| % $._config,
+            'for': '5m',
+            labels: {
+              severity: 'critical',
+            },
+            annotations: {
+              summary: 'There are unhealthy pools.',
+              description:
+                (
+                  'The pool {{$labels.pool_name}} in zone {{$labels.zone}} is currently down and unhealthy.'
+                ) % $._config,
+            },
+          },
+          {
+            alert: 'CloudflareMetricsDown',
+            expr: |||
+              up{job="%(alertsMetricsDownJobName)s"} == 0
+            ||| % $._config,
+            'for': '5m',
+            labels: {
+              severity: 'critical',
+            },
+            annotations: {
+              summary: 'Cloudflare metrics are down.',
+              description:
+                (
+                  'Grafana is no longer receiving metrics for the Cloudflare integration from instance {{$labels.instance}}.'
+                ) % $._config,
+            },
+          },
+        ],
+      },
+    ],
+  },
+}
@@ -0,0 +1,16 @@
+{
+  _config+:: {
+    dashboardTags: ['cloudflare-mixin'],
+    dashboardPeriod: 'now-30m',
+    dashboardTimezone: 'default',
+    dashboardRefresh: '1m',
+
+    // CloudflareMetricsDown alert filter variable
+    alertsMetricsDownJobName: 'integrations/cloudflare',
+
+    // alerts thresholds
+    alertsHighThreatCount: 3,  // count
+    alertsHighRequestRate: 150,  // percentage
+    alertsHighHTTPErrorCodeCount: 100,  // count
+  },
+}