Hi everyone! I'm currently running 4 VPS on my cloud provider and have a few internal servers for my organization. I want to set up a monitoring solution using Debian 13 and Zabbix 7.0 to keep an eye on both the external VPS and internal servers.
Here's the challenge: the network at my workplace is pretty unstable, and I'm dealing with a dynamic IP situation due to CGNat, which means I can only use a couple of IP blocks. This connectivity issue can cause me to lose some crucial monitoring data. While that's not a huge deal for the internal server, it's essential for the VPS.
I'm considering adding another VPS on my provider and connecting everything through a WireGuard VPN. The idea is to monitor all of these servers with Zabbix agents and some SSH plugins, ensuring everything is encrypted. Do you think this setup would be secure enough? Any suggestions would be really helpful! Thanks in advance.
5 Answers
In my experience, I’d suggest dropping the internal server altogether. It could complicate things, especially with how you'll monitor data loss or downtime. You might end up getting a lot of false alerts which can be a headache. If metrics for the internal server are a must, consider using a small device like a Raspberry Pi next to it just for monitoring.
You might want to check out Prometheus with remote write capabilities. It lets you deploy a small instance in your network behind CGNat or any stability issues. It handles buffering and reconnecting automatically, so you won't lose telemetry data when connectivity dips. You can either manage it yourself or opt for various hosted solutions like Grafana Cloud.
Have you thought about using Netdata? They offer 5 free agents for monitoring, which could fit your needs well.
Definitely consider using Zabbix Agent 2, and configure it to cache data when it can’t reach your server. There’s a useful option for persistent buffer periods that you should review. You could also set up a VPS as a Zabbix Proxy to gather data from the agents and relay it to your server whenever the connection permits. Start with the caching option first, though!
Ah, memories of the good old days with Nagios and Cacti! If you're looking at the current tools, just be sure you’re picking ones that fit your workflow and that you can maintain as needed.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures