zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloud-foundation-fabric/blueprints/cloud-operations/network-quota-monitoring/src/plugins/series-firewall-policies.py

44 lines
1.7 KiB
Python
Raw Normal View History

versions.tf maintenance + copyright notice bump (#1782) * Bump copyright notice to 2023 * Delete versions.tf on blueprints * Pin provider to major version 5 * Remove comment * Fix lint * fix bq-ml blueprint readme --------- Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com> Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-20 09:17:47 -07:00
# Copyright 2023 Google LLC
Networking dashboard and discovery tool refactor (#1020) * wip * wip * wip * wip * wip * discovery * single discovery * page token * batch requests * remove plugin name * streamline * streamline * dynamic routes * dynamic routes * forwarding rules and addresses * batch requests * metrics * notes * notes * streamline * fixes, dump * streamline * remove globals * wip metrics * subnet time series * networks per project plugin * firewall rules timeseries * use names in metric labels * firewall policies timeseries * wip * instances per network timeseries * routes timeseries * custom quota * simpler quota, network peering timeseries * peering timeseries * timeseries names * wip descriptors * metric descriptors * fixes * wip * Use partial for all cf init functions * Add requirements.txt * fix org key mismatch * Fix folder short cli name * Fix instance_networks when iterable is empty * more readability and fixing some strings * replace() -> removeprefix and remove unneeded quoting * setdefault in init()s * Fix next hop type * Remove unneeded fstring * create descriptors * create descriptors log * rename descriptor requests function * non-working metrics implementation (duplicate timeseries batched) * timeseries * fixes * write timseries * fix timeseries plugins * start documenting code * docstrings and comments * docstrings comments and small fixes * rename cf to src * discover nodes instead of just projects * discovery node can be a folder or org * cf entrypoint and fixes * cf deployment * remove old paths * cloud function deploy readme * diagrams * resource ids in example * discovery tool readme * top-level README * Some documentation fixes * Add secondary ranges * Update README.md * add legend to scope diagram * improve description of discovery configuration variable * add comment in example for custom quotas file * rename op_project to monitoring_project * dashboard metric rename wip * Update discover-cai-compute.py * deploy sample dashboard Co-authored-by: Julio Castillo <jccb@google.com> Co-authored-by: Aurélien Legrand <aurelien.legrand01@gmail.com>
2022-12-18 01:07:24 -08:00
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
'Prepares descriptors and timeseries for firewall policy resources.'
import logging
from . import MetricDescriptor, TimeSeries, register_timeseries
DESCRIPTOR_ATTRS = {
'tuples_used': 'Firewall tuples used per policy',
'tuples_available': 'Firewall tuples limit per policy',
'tuples_used_ratio': 'Firewall tuples used ratio per policy'
}
DESCRIPTOR_LABELS = ('parent', 'name')
LOGGER = logging.getLogger('net-dash.timeseries.firewall-policies')
TUPLE_LIMIT = 2000
@register_timeseries
def timeseries(resources):
'Returns used/available/ratio firewall tuples timeseries by policy.'
LOGGER.info('timeseries')
for dtype, name in DESCRIPTOR_ATTRS.items():
yield MetricDescriptor(f'firewall_policy/{dtype}', name, DESCRIPTOR_LABELS,
dtype.endswith('ratio'))
for v in resources['firewall_policies'].values():
tuples = int(v['num_tuples'])
labels = {'parent': v['parent'], 'name': v['name']}
yield TimeSeries('firewall_policy/tuples_used', tuples, labels)
yield TimeSeries('firewall_policy/tuples_available', TUPLE_LIMIT, labels)
yield TimeSeries('firewall_policy/tuples_used_ratio', tuples / TUPLE_LIMIT,
labels)