[Monitoring] Example for Monitoring MIAB (Logs, Grafana, Loki, etc)?

Unsupported Modifications
1

Hello everyone,

I am new to MIAB and currently exploring ways to monitor the system more efficiently.

I would like to ask:

  • Are there any examples shared by the community on how to monitor MIAB, either by watching logs, queues, or server status?
  • Has anyone here successfully integrated MIAB logs with external tools like Grafana, Promtail, Loki, or similar?
  • How do you usually collect and visualize logs from MIAB (especially mail logs)?

Any references, examples, or best practices would be greatly appreciated!
Thanks a lot :pray:

Best regards,
Hugo

2

There’s several things:

  • Built in munin monitoring: see box/admin/munin (I don’t use it very often)
  • I get a weekly mail from the box with a usage report (I believe this is built-in) The box als mails changes to the status of the box
  • In addition I installed pflogsumm, to analyse the postfix logs. I also set it up to send one mail a week.
  • I use a free tier of uptimerobot.com to monitor the availability of mail and http ports
  • Finally, I run a weekly blacklist checker, to see if my ip is on some blacklists

Is this the kind of stuff that you’re looking for?

3

Hi KiekerJan,

Let me answer several points :slightly_smiling_face::

  • Built-in Munin Monitoring (box/admin/munin):
    In my case, I mainly use Munin for monitoring Fail2Ban graphs.
  • Weekly Usage Report Email and Status Updates:
    I’m not sure about this, because I don’t receive a weekly report. However, I do receive a system status check email every night.
  • pflogsumm for Postfix Log Analysis:
    This caught my attention. I might take a look into some documentation and procedures later, as it seems interesting to implement.
  • Monitoring with UptimeRobot:
    Of course, I also use a similar tool to monitor service ports like HTTP or TCP. However, I use a self-hosted solution called Uptime Kuma. Maybe you’ve heard of it? It works almost the same as UptimeRobot.
  • Finally, I run a weekly blacklist checker, to see if my ip is on some blacklists:
    ->This is also interesting, if I may ask, what tool do you use? Or custom using bash script + API from several providers such as DNSBL?

your answer is very helpful, but I actually want to collect logs from mail.log or logs from postfix/dovecote and process them (either inputting them to ELK stack or grafana via promptai - Loki), then display in realtime what email logs are sent, received, or greylisted.

but I also ask in this forum as additional material and maybe there is insight that I think is very relevant and interesting

4

I use this but I think there are many like it. The author does keep it updated. There are many blacklists on there, and sometimes they stop.
I run it in a script, something like this:

#!/bin/bash
# Use the mailinabox config as source for IP addresses
source /etc/mailinabox.conf

# Make sure the current folder is your mail in a box install dir, e.g. when running from a cron job
tools/check-dnsbl.py $PUBLIC_IP $PUBLIC_IPV6 2>&1 | management/email_administrator.py "Blacklist Check Result"
1 Like