SOP: Handling a Service Failure
The Instructor's Perspective
In the Army, we called it “fault isolation.” When a service fails, don’t panic. Follow this SOP to identify the root cause and get it back online. Don’t forget to conduct an AAR after you’ve fixed the issue!
1. Initial Assessment (The Recon Phase)
- Identify the Failed Service: Which service is down? (e.g.,
web-server-01) - Check for Connectivity: Can you reach the service’s IP address?
- Verify Other Services: Are other services on the same host also down?
2. Troubleshooting (The Investigation Phase)
- Check the Logs: Use
journalctl -u service-nameor check/var/log/for error messages. - Verify Resource Usage: Check for high CPU, RAM, or Disk space usage.
- Check Network Settings: Ensure that the service’s network settings are correct.
- Restart the Service: Use
systemctl restart service-nameto see if it comes back online. - Check for Recent Changes: Did you or anyone else make changes to the service’s configuration recently?
3. Resolution (The Recovery Phase)
- Apply the Fix: Once you’ve identified the root cause, apply the necessary fix.
- Verify the Fix: Ensure that the service is running and accessible.
- Document the Fix: Update any relevant Knowledge Base items.
- Conduct an AAR: Use the AAR template to document the failure and how it was resolved.
4. Prevention (The Mission-Ready Phase)
- Update your PACE Plan if the failure was due to a lack of redundancy.
- Consider adding additional monitoring or alerting for the service.
- Share your findings with the community in a blog post or Discord message.
Status: (Complete / In-Progress) Related Tasks:
- Conduct AAR
- Update documentation
- Share with community