The concept
Cloudnetip.com is a web platform operating under the Cloudnetip brand, which provides tools for monitoring and managing various performance metrics of servers and networks. The concept of Node Management involves comprehensive monitoring and analysis of key characteristics of computing resources, such as network, disk subsystem, central processing unit (CPU), random access memory (RAM), and graphics processing unit (GPU).
Key features include:
Resource Management: Monitoring the status and load of CPUs, memory, network, disks, and graphics processors on servers or VPS.
Analytics and Alerts: Built-in tools for data analysis, historical metrics, and sending alerts when load thresholds or other critical metrics are exceeded.
Shared Private Network (SPN): Creating and managing a private network (VPN) with shared nodes and employees, including DNS and subnet access management.
Providing tools for configuring VPNs and proxy servers with account management through an account manager.
Planning and Management: The ability to schedule and allocate resources based on current and forecasted loads.
The Cloudnetip platform is designed for system administrators and IT engineers.
It provides comprehensive infrastructure management and monitoring, offering administrators tools to ensure the stable and secure operation of servers and networks.
How it works
The Nodes Management system consists of components with different functions:
- netip.core – core component: authentication, collection of key host system metrics, monitoring of disk devices and filesystems, performance testing
- netip.network – network component: collection of network metrics, monitoring of firewall operation, virtual private networks, proxy, and the Domain Name System (DNS)
Components are run in isolation using Docker Engine 20.0 and above.
Supports AMD64, ARM64 architectures, and Linux kernels ≥ 5.6 (Debian ≥ 11, Ubuntu ≥ 20, etc.)
Components connect to the internal Netip system, undergo authorization, maintain a constant connection, and receive commands. Each component has its own container limitations, does not have full access to the parent system, and can be manually restricted.
All components are designed to minimize impact on your system and avoid additional load.
What is inside
Each container (component) is based on the alpine image. Inside the containers, there are scripts and programs that connect to the external Netip API.
To view the container logs, run the command:
docker logs -f netip.networkTo access the container, run the command:
docker exec -it netip.core ashSource Code
The latest versions of the components and their source code are published on GitHub and are available for analysis or self-building.
In addition, they are built using
GitHub Actionsand subsequently published toGitHub Packages.To build components yourself, simply fork the repository and run the pipeline.
- Core Component repository
- Network Component repository
Access
Note
We strive to provide maximum availability of information from your services while minimizing interference with your
files and resources.
You can always limit components by manually configuring parameters to meet
your security policy. You can also review the source code and build your own components.
Warning!
Parameters can be disabled, but in this case, the amount of monitoring data may be reduced,
or some functionality may become unavailable.
If NVMe disks are not used on the node, the --cap-add SYS_ADMIN parameter is recommended not to be applied.
netip.core component
| Parameter | Description |
|---|---|
--uts host | Retrieves the system name (hostname) |
--pid host | Determines the state of processes in the system (zombie processes) |
-v /run/dbus/system_bus_socket:/run/dbus/system_bus_socket:ro | Login notifications via dbus |
--cap-add SYS_RAWIO | Reads device indicators without access to mounting them |
--cap-add SYS_ADMIN | This parameter is required due to the use of NVME_IOCTL for reading NVMe disk status. During installation, if NVMe disks are not present in the system, the flag is not applied. |
--device /dev/sda | Grants access to the device for reading indicators |
-v /my-volume/.netip-device:/_external/my-volume/.netip-device:ro | Reads available disk space. This parameter does not provide access to data, as it mounts one level deeper and runs with the :ro (read-only) flag. |
--gpus all | Reads GPU metrics |
netip.network component
| Parameter | Description |
|---|---|
--network host | Collects network interface metrics and improves performance via seamless integration |
--cap-add NET_ADMIN | Manages firewall rules and network routes |