部署¶
核心的Jaeger后端组件都可以在Docker Hub上找到对应的Docker镜像
| 组件 | 镜像库地址 |
|---|---|
| jaeger-agent | hub.docker.com/r/jaegertracing/jaeger-agent/ |
| jaeger-collector | hub.docker.com/r/jaegertracing/jaeger-collector/ |
| jaeger-query | hub.docker.com/r/jaegertracing/jaeger-query/ |
下面有容器编排工具的配置文件模板
- Kubernetes: github.com/jaegertracing/jaeger-kubernetes,
- OpenShift: github.com/jaegertracing/jaeger-openshift.
Agent¶
Jaeger client libraries expect jaeger-agent process to run locally on each host. The agent exposes the following ports:
| Port | Protocol | Function |
|---|---|---|
| 5775 | UDP | accept zipkin.thrift over compact thrift protocol |
| 6831 | UDP | accept jaeger.thrift over compact thrift protocol |
| 6832 | UDP | accept jaeger.thrift over binary thrift protocol |
| 5778 | HTTP | serve configs, sampling strategies |
It can be executed directly on the host or via Docker, as follows:
## make sure to expose only the ports you use in your deployment scenario! docker run \ --rm \ -p5775:5775/udp \ -p6831:6831/udp \ -p6832:6832/udp \ -p5778:5778/tcp \ jaegertracing/jaeger-agent
Discovery System Integration¶
The agents can connect point to point to a single collector address, which could be load balanced by another infrastructure component (e.g. DNS) across multiple collectors. The agent can also be configured with a static list of collector addresses.
On Docker, a command like the following can be used:
docker run \ --rm \ -p5775:5775/udp \ -p6831:6831/udp \ -p6832:6832/udp \ -p5778:5778/tcp \ jaegertracing/jaeger-agent \ /go/bin/agent-linux --collector.host-port=jaeger-collector.jaeger-infra.svc:14267
In the future we will support different service discovery systems to dynamically load balance across several collectors (issue 213).
Collectors¶
Many instances of jaeger-collector can be run in parallel.
Collectors require almost no configuration, except for the location of Cassandra cluster,
via --cassandra.keyspace and --cassandra.servers options, or the location of ElasticSearch cluster, via
--es.server-urls, depending on which storage is specified. To see all command line options run
go run ./cmd/collector/main.go -h
or, if you don't have the source code
docker run -it --rm jaegertracing/jaeger-collector /go/bin/collector-linux -h
At default settings the collector exposes the following ports:
| Port | Protocol | Function |
|---|---|---|
| 14267 | TChannel | used by jaeger-agent to send spans in jaeger.thrift format |
| 14268 | HTTP | can accept spans directly from clients in jaeger.thrift format |
| 9411 | HTTP | can accept Zipkin spans in JSON or Thrift (disabled by default) |
Storage Backend¶
Collectors require a persistent storage backend. Cassandra 3.x (default) and ElasticSearch are the primary supported storage backends. There is ongoing work to add support for MySQL and ScyllaDB.
Cassandra¶
Deploying Cassandra itself is out of scope for our documentation. One good source of documentation is the Apache Cassandra Docs
Schema script¶
A script is provided to initialize Cassandra keyspace and schema
using Cassandra's interactive shell cqlsh:
MODE=test sh ./plugin/storage/cassandra/schema/create.sh | cqlsh
For production deployment, pass MODE=prod DATACENTER={datacenter} arguments to the script,
where {datacenter} is the name used in the Cassandra configuration / network topology.
The script also allows overriding TTL, keyspace name, replication factor, etc. Run the script without arguments to see the full list of recognized parameters.
TLS support¶
Jaeger supports TLS client to node connections as long as you've configured
your Cassandra cluster correctly. After verifying with e.g. cqlsh, you can
configure the collector and query like so:
docker run \ -e CASSANDRA_SERVERS=<...> \ -e CASSAMDRA_TLS=true \ -e CASSANDRA_TLS_SERVER_NAME="CN-in-certificate" \ -e CASSANDRA_TLS_KEY=<path to client key file> \ -e CASSANDRA_TLS_CERT=<path to client cert file> \ -e CASSANDRA_TLS_CA=<path to your CA cert file> \ jaegertracing/jaeger-collector
The schema tool also supports TLS. You need to make a custom cqlshrc file like so:
# Creating schema in a cassandra cluster requiring client TLS certificates. # # Create a volume for the schema docker container containing four files: # cqlshrc: this file # ca-cert: the cert authority for your keys # client-key: the keyfile for your client # client-cert: the cert file matching client-key # # if there is any sort of DNS mismatch and you want to ignore server validation # issues, then uncomment validate = false below. # # When running the container, map this volume to /root/.cassandra and set the # environment variable CQLSH_SSL=--ssl [ssl] certfile = ~/.cassandra/ca-cert userkey = ~/.cassandra/client-key usercert = ~/.cassandra/client-cert # validate = false
ElasticSearch¶
ElasticSearch does not require initialization other than installing and running ElasticSearch. Once it is running, pass the correct configuration values to the Jaeger collector and query service.
Shards and Replicas for ElasticSearch indices¶
Shards and replicas are some configuration values to take special attention to, because this is decided upon index creation. This article goes into more information about choosing how many shards should be chosen for optimization.
Query Service & UI¶
jaeger-query serves the API endpoints and a React/Javascript UI. The service is stateless and is typically run behind a load balancer, e.g. nginx.
At default settings the query service exposes the following port(s):
| Port | Protocol | Function |
|---|---|---|
| 16686 | HTTP | /api/* endpoints and Jaeger UI at / |
UI Configuration¶
Multiple aspects of the UI can be configured:
- The top-right menu in the global nav
- A Google Analytics ID can be defined to enable Google Analytics tracking in the UI
- Dependencies menu
These options can be configured by a JSON configuration file. The --query.ui-config command line parameter of the query service must then be set to the path to the JSON file when the query service is started.
An example configuration file:
{ "gaTrackingID": " UA-000000-2", "menu": [ { "label": "About Jaeger", "items": [ { "label": "GitHub", "url": "https://github.com/jaegertracing/jaeger" }, { "label": "Docs", "url": "http://jaeger.readthedocs.io/en/latest/" } ] } ], "dependenciesMenuEnabled": false }
In the above example, gaTrackingID will be used as the Google Analytics tracking ID and menu configures the menu in the top right of the UI.
The configured menu will have a dropdown labeled "About Jaeger" with sub-options for "GitHub" and "Docs". The format for a link in the top right menu is as follows:
{ "label": "Some text here", "url": "https://example.com" }
Links can either be members of the menu Array, directly, or they can be grouped into a dropdown menu option. The format for a group of links is:
{ "label": "Dropdown button", "items": [ ] }
The items Array should contain one or more link configurations.
TODO: Swagger and GraphQL API (issue 158).
Aggregation Jobs for Service Dependencies¶
Production deployments need an external process which aggregates data and creates dependency links between services. Project spark-dependencies is a Spark job which derives dependency links and stores them directly to the storage.
Configuration¶
All binaries accepts command line properties and environmental variables which are managed by
by viper and cobra.
The names of environmental properties are capital letters and characters - and . are replaced with _.
To list all configuration properties call jaeger-binary -h.