We’re on VMs, not Kubernetes. Does this still work?

Yes. Run Prometheus on a small VM, deploy blackbox and node exporters as services, ship logs with Vector/Fluent Bit, and run the OTel Collector as a systemd service. The configs are nearly identical—only discovery changes.

Do we need traces before SLOs?

No. Define SLOs using ingress metrics first. Traces help reduce MTTR and pinpoint hot spans, but you can page on burn-rate using just metrics.

What if the legacy app can’t load an agent?

Use ingress metrics + blackbox probes for SLIs and add sidecar proxies (Envoy/NGINX) to capture latency/error data. For traces, use mesh-generated spans or eBPF tools like Pixie to infer edges.

Should we centralize on one vendor or self-host?

Route via OTel and keep the choice open. Grafana Cloud is cost-effective for many; Datadog/New Relic are fine if procurement is easy. The key is decoupling ingestion from code.

How do we prevent alert fatigue?

Remove host-level pages. Page only on SLO burn-rate. Send everything else to tickets. Keep two burn windows (fast and slow) and tune until on-call stops hating you.

Guides · Dec 4, 2025 · 10 minute read

Harden That Legacy Service: A 6‑Week, Progressive Observability + SLO Playbook

You don’t need a rewrite to stop 3AM pages. Ship a pragmatic, staged observability stack, define SLOs that matter, and use error budgets to harden what you already have.

Back to all posts

Harden That Legacy Service: A 6‑Week, Progressive Observability + SLO Playbook

Key takeaways

Implementation checklist