# Infrastructure Monitoring for DevOps & Sysadmins Monitor the infrastructure your apps depend on. TCP ports, ICMP ping, DNS records, SSL certificates, and uptime from outside your network, with alerts that route to whoever's on call. No agents to install. No dashboards to babysit. Just reliable monitoring that fits your existing workflow. [ Start monitoring ](https://ohdear.app/register) 10 day free trial No credit card required ## TCP port monitoring Know when MySQL, Redis, or mail servers stop responding Monitor any TCP service your infrastructure relies on. When MySQL on 3306 stops accepting connections or Redis on 6379 goes silent, you get alerted before cascading failures hit your apps. Monitor databases, cache servers, queue workers, SMTP servers, and any other TCP endpoint that matters. [ Explore TCP monitoring ](https://ohdear.app/features/tcp-port-monitoring) ## ICMP ping monitoring Monitor servers that don't have HTTP endpoints Not everything runs a web server. Use ICMP ping to monitor network devices, internal servers, and infrastructure components that need to be reachable but don't expose HTTP. Get latency metrics and availability data for your entire infrastructure, not just your web-facing services. [ Explore ping monitoring ](https://ohdear.app/features/ping-monitoring) ## DNS monitoring Catch unauthorized changes and propagation issues DNS changes can break everything. We monitor your records and alert you when something changes, whether it's an unauthorized modification, a propagation issue, or a registrar problem. Especially valuable when you're managing DNS for multiple domains or working with CDNs and load balancers. [ Explore DNS monitoring ](https://ohdear.app/features/dns-monitoring) ## SSL certificate management at scale Never get paged for an expired cert again Track certificate expiry across all your domains. Get alerts 30, 14, and 7 days before expiration so you have time to renew, not scramble. We also catch chain issues, weak algorithms, and misconfigurations that cause intermittent HTTPS failures. [ Explore SSL monitoring ](https://ohdear.app/features/continuous-certificate-monitoring) ## External uptime verification Monitor from outside your network Internal monitoring misses network-level issues. We check your services from multiple global locations every minute, catching problems that your internal tools can't see. When your load balancer, CDN, or DNS fails, you'll know, even if your servers are technically running. [ Explore uptime monitoring ](https://ohdear.app/features/website-uptime-monitoring) ## Alerts that fit your on-call rotation PagerDuty, Opsgenie, Slack, and more Route alerts to whoever's on call. Integrate with PagerDuty and Opsgenie for proper escalation, or use Slack and webhooks for less critical notifications. Different alert channels for different check types mean the right person gets paged, not the whole team. [ Explore notifications ](https://ohdear.app/features/notifications) ## Cron and scheduled task monitoring Know when background jobs stop running Backups, log rotation, data syncs, all those jobs that run in the background and fail silently. We monitor them all and alert you when they stop running or take too long. Works with any cron job that can hit a URL, no agents or special setup required. [ Explore cron monitoring ](https://ohdear.app/features/scheduled-task-monitoring) ## Status pages for incident communication Separate infrastructure from your main stack When your infrastructure goes down, your status page shouldn't go with it. Our status pages run on separate infrastructure so stakeholders can check status even during major outages. Clear incident communication reduces support load and keeps everyone informed during the moments that matter most. [ Explore status pages ](https://ohdear.app/features/status-pages) ### Let's get technical (if you're into that) Automate your monitoring setup with our API and Terraform provider. Treat monitoring as code, version it, review it, and deploy it alongside your infrastructure. ### Terraform provider Infrastructure as code for your monitoring Define your monitors alongside your infrastructure: ``` terraform { required_providers { ohdear = { source = "articulate/ohdear" } } } resource "ohdear_site" "production" { team_id = var.ohdear_team_id url = "https://app.example.com" } resource "ohdear_site" "database" { team_id = var.ohdear_team_id url = "db.example.com:3306" } ``` [Learn more about the Terraform provider →](https://ohdear.app/third-party-integrations/terraform-provider) ### REST API Automate everything with our API Add monitors from your deployment scripts: ``` curl -X POST https://ohdear.app/api/sites \ -H "Authorization: Bearer $OHDEAR_API_TOKEN" \ -H "Content-Type: application/json" \ -d '{ "url": "https://app.example.com", "team_id": 1234, "checks": ["uptime", "certificate_health", "dns"] }' ``` Enable maintenance mode during deploys: ``` # Start maintenance before deploy curl -X POST https://ohdear.app/api/sites/123/maintenance-period \ -H "Authorization: Bearer $OHDEAR_API_TOKEN" \ -d '{"seconds": 600}' # Your deployment... # Stop maintenance when done curl -X DELETE https://ohdear.app/api/sites/123/maintenance-period \ -H "Authorization: Bearer $OHDEAR_API_TOKEN" ``` [Explore the full API documentation →](https://ohdear.app/docs/api/introduction) ### Security you can trust We take access to your infrastructure seriously We understand the sensitive nature of monitoring access. Your infrastructure data matters, and we don't take that responsibility lightly. - **Two-factor authentication** available for all accounts - **TLS 1.2+ encryption** for all data in transit - **GDPR compliant** with data minimization practices - **No data sharing** with third parties, ever - **Strict access controls** with regular internal audits [Read our full security policy →](https://ohdear.app/security) ## Really into the nitty gritty details? Want to get into the nitty gritty details of our monitoring? Have a look at our documentation. ## Frequently asked questions ### Can I monitor TCP ports like MySQL and Redis? Yes. Oh Dear monitors any [TCP service on any port](https://ohdear.app/features/tcp-port-monitoring). When MySQL on 3306 stops accepting connections or Redis on 6379 goes silent, you get alerted before cascading failures hit your apps. Great for databases, cache servers, queue workers, and SMTP servers. ### How does Oh Dear integrate with my on-call rotation? We integrate natively with [PagerDuty](https://ohdear.app/docs/notifications/pagerduty) and [Opsgenie](https://ohdear.app/docs/notifications/opsgenie) for proper escalation. You can route different check types to different teams, so TCP port failures page your infrastructure team while HTTP issues go to the application team. [Slack and webhooks](https://ohdear.app/features/notifications) are also available for less critical alerts. ### Can I use Terraform to manage my monitors? Yes. Our [Terraform provider](https://ohdear.app/docs/tools-and-sdks/3rd-party-integrations-of-oh-dear#terraform) lets you define monitors as code alongside your infrastructure. Version your monitoring config, review changes in PRs, and deploy monitors automatically when you spin up new environments. Infrastructure as code for your monitoring setup. ### Why do I need external monitoring if I have internal tools? Internal monitoring misses network-level issues. We check your services from multiple global locations every minute, catching problems that your internal tools can't see. When your load balancer, CDN, or DNS fails, you'll know even if your servers are technically running. ### How do you monitor DNS changes? We track your [DNS records](https://ohdear.app/features/dns-monitoring) and alert you when anything changes, whether it's an unauthorized modification, a propagation issue, or a registrar problem. This is especially valuable when managing DNS for multiple domains or working with CDNs and load balancers where DNS changes can break everything. ### Do you publish your monitoring IP addresses for firewall whitelisting? Yes. We publish a fixed list of static IP addresses that our monitoring checks originate from. You can whitelist these IPs in your firewalls and security configurations. [View our complete IP list](https://ohdear.app/docs/faq/what-ips-does-oh-dear-monitor-from). [See all other FAQ items →](https://ohdear.app/docs/faq) ## Start monitoring your infrastructure Start a no-strings-attached 10-day free trial. You're all set in less than a minute. (No credit card needed.) Not convinced yet? Need help? Get in touch via .