March 12, 2026 (1mo ago)
Written by Temps Team
Last updated March 12, 2026 (1mo ago)
Pingdom charges $15/month for 10 monitors. UptimeRobot's free tier checks every 5 minutes — meaning your site could be down for nearly 5 minutes before anyone notices. And by "anyone," we usually mean your users, not your team. According to ITIC's 2024 Hourly Cost of Downtime Survey, 91% of enterprises say a single hour of downtime costs over $300,000.
The monitoring market is bloated with SaaS tools that charge per check, per seat, or per notification channel. But the core concept behind uptime monitoring isn't complicated. It's an HTTP request, a timer, and a state machine. You can build one yourself.
This guide explains what uptime monitoring actually does under the hood, walks through building a basic monitor from scratch, compares open-source alternatives, and shows how integrated platforms handle it without the duct tape.
TL;DR: Uptime monitoring boils down to scheduled HTTP checks, a state machine for UP/DEGRADED/DOWN transitions, and an alert dispatcher. Commercial tools like Pingdom ($15/mo for 10 monitors) and Better Uptime ($24/mo) charge for something you can build or self-host. Uptime Kuma has over 63,000 GitHub stars and proves self-hosted monitoring works. You don't need SaaS for this.
Uptime monitoring goes far beyond "is the server responding." According to Catchpoint, 77% of outages involve degraded performance rather than complete failures. A good monitoring system checks multiple layers of your stack to catch degradation before it becomes downtime.
The most basic check: send an HTTP GET request and verify you get a 200 status code. But status alone isn't enough. A page that returns 200 OK in 8 seconds is functionally down for your users. Good monitors track response time percentiles — p50, p95, p99 — and alert when they drift beyond thresholds.
You'll also want to monitor specific status code patterns. A sudden spike in 502 errors from your reverse proxy tells a different story than a 503 from your application. Each demands a different response.
Let's Encrypt certificates expire every 90 days. Auto-renewal works until it doesn't — a DNS change, a permission error, a failed hook script. According to Netcraft, roughly 3.6 million SSL certificates expire on any given day worldwide. Your monitor should warn you 14, 7, and 3 days before expiry.
A 200 status code doesn't guarantee your page is working. Your API might return {"error": "database connection failed"} with a 200 status. Content validation checks that the response body contains expected strings, matches a JSON schema, or doesn't contain error patterns.
When something feels slow, you need to know where the time went. A full check decomposes response time into DNS lookup, TCP connection, TLS handshake, time-to-first-byte (TTFB), and content transfer. This breakdown turns "it's slow" into "DNS is taking 400ms because your resolver is overloaded."
False alerts destroy trust in your monitoring system faster than missed alerts do. According to PagerDuty's State of Digital Operations report, teams experiencing high alert noise have 2.5x longer mean-time-to-acknowledge for real incidents. When your team ignores alerts because "it's probably nothing," you've already lost.
Here's what happens with noisy monitoring. Your team gets paged at 3 AM for a DNS timeout that resolved itself in 2 seconds. It happens again Tuesday. And Friday. By the following week, when a real outage hits, the on-call engineer checks their phone, mutters "probably another false alarm," and goes back to sleep. This is the cry-wolf effect, and it's measurable.
In our experience, teams that don't implement confirmation windows see their alert acknowledgment time double within 3 months. The monitors keep working, but the humans stop trusting them.
Most false alerts come from three sources:
None of these are outages. All of them trigger naive monitors.
Three techniques solve 95% of false positive problems:
Retries with backoff. Don't alert on the first failure. Wait 10 seconds, retry. If it fails again, wait 30 seconds, retry once more. Three consecutive failures in 70 seconds is almost certainly real.
Multi-location checks. If your monitor in Frankfurt sees a failure but your monitors in Virginia and Singapore don't, it's a routing problem, not an outage. Require 2 of 3 locations to confirm before alerting.
Confirmation windows. Define a time window — say, 2 minutes — during which consecutive checks must fail before the state transitions to DOWN. A single failed check starts the clock. A successful check resets it.
A complete uptime monitoring system has five components. According to the CNCF, Prometheus — the most popular open-source monitoring tool — is used by 90% of CNCF member organizations. But you don't need Prometheus's complexity for uptime checks. The architecture is simpler than you'd think.
Here's what the full system looks like:
+------------------+
| Scheduler |
| (cron / interval)|
+--------+---------+
|
+--------------+--------------+
| | |
+-----v----+ +-----v----+ +------v---+
| Checker | | Checker | | Checker |
| (US-East)| | (EU-West)| | (AP-SE) |
+-----+----+ +-----+----+ +-----+----+
| | |
+--------------+--------------+
|
+--------v---------+
| State Machine |
| UP/DEGRADED/DOWN |
+--------+---------+
|
+--------------+--------------+
| |
+---------v----------+ +-----------v--------+
| Time-Series Store | | Alert Dispatcher |
| (PostgreSQL/ | | (email, Slack, |
| TimescaleDB) | | webhook, SMS) |
+--------------------+ +--------------------+
|
+---------v----------+
| Status Page |
| (public dashboard) |
+--------------------+
The scheduler decides when to run each check. The simplest implementation is a loop with a sleep interval. More sophisticated schedulers spread checks across the interval to avoid thundering herd problems — if you have 100 monitors at 60-second intervals, you don't want all 100 firing at :00.
This is the component that actually makes the request. It needs configurable timeouts (connection timeout, read timeout, total timeout), support for following or rejecting redirects, custom headers for authenticated endpoints, and the ability to validate response content.
Every check produces a data point: timestamp, response time, status code, and any error message. You need to store this efficiently for trend analysis and SLA calculations. PostgreSQL with TimescaleDB works well. So does InfluxDB. For small installations, even SQLite handles the write volume.
When the state machine transitions from UP to DOWN, the dispatcher sends notifications. The key architectural decision is separating detection from notification — the checker detects, the state machine decides, and the dispatcher notifies. This separation lets you add notification channels without touching the detection logic.
A public-facing page showing current status and historical uptime. This is surprisingly important for trust. StatusPage.io (now part of Atlassian) charges $29/month for a basic status page. You can generate one from the same time-series data your monitors produce.
Building a functional uptime monitor takes about 100 lines of code. The key isn't the HTTP request — it's the state machine. According to the Stack Overflow survey, 76% of professional developers use Python for scripting and automation tasks. Here's a Python implementation that covers the essentials.
The state machine is the brain of your monitor. It prevents false alerts by requiring multiple consecutive failures before transitioning states:
import httpx
import time
import smtplib
from enum import Enum
from dataclasses import dataclass, field
from datetime import datetime
class State(Enum):
UP = "up"
DEGRADED = "degraded"
DOWN = "down"
@dataclass
class Monitor:
url: str
interval: int = 60 # seconds
timeout: int = 10
retries: int = 3
degraded_threshold: float = 2.0 # seconds
state: State = State.UP
consecutive_failures: int = 0
last_response_time: float = 0.0
def check(self) -> dict:
"""Run a single health check with retry logic."""
for attempt in range(self.retries):
try:
start = time.monotonic()
response = httpx.get(
self.url,
timeout=self.timeout,
follow_redirects=True
)
elapsed = time.monotonic() - start
if response.status_code >= 500:
self.consecutive_failures += 1
continue
self.consecutive_failures = 0
self.last_response_time = elapsed
# Determine new state
old_state = self.state
if elapsed > self.degraded_threshold:
self.state = State.DEGRADED
else:
self.state = State.UP
return {
"status": response.status_code,
"response_time": elapsed,
"state": self.state.value,
"changed": old_state != self.state,
"timestamp": datetime.utcnow().isoformat()
}
except (httpx.TimeoutException, httpx.ConnectError):
self.consecutive_failures += 1
if attempt < self.retries - 1:
time.sleep(2 ** attempt) # Exponential backoff
# All retries failed
old_state = self.state
self.state = State.DOWN
return {
"status": 0,
"response_time": -1,
"state": self.state.value,
"changed": old_state != self.state,
"timestamp": datetime.utcnow().isoformat()
}
The critical detail: only alert when state changes, not on every failed check. This single rule eliminates most alert fatigue:
def run_loop(monitor: Monitor, alert_fn):
"""Main monitoring loop."""
while True:
result = monitor.check()
# Store result (PostgreSQL, SQLite, etc.)
store_result(monitor.url, result)
# Alert only on transitions
if result["changed"]:
if monitor.state == State.DOWN:
alert_fn(f"DOWN: {monitor.url} is unreachable "
f"after {monitor.retries} retries")
elif monitor.state == State.DEGRADED:
alert_fn(f"SLOW: {monitor.url} response time "
f"{result['response_time']:.2f}s")
elif monitor.state == State.UP:
alert_fn(f"RECOVERED: {monitor.url} is back up "
f"(response: {result['response_time']:.2f}s)")
time.sleep(monitor.interval)
For SLA calculations and trend analysis, store every check result:
CREATE TABLE uptime_checks (
id BIGSERIAL PRIMARY KEY,
url TEXT NOT NULL,
status_code INT,
response_time_ms FLOAT,
state VARCHAR(10),
error_message TEXT,
checked_at TIMESTAMPTZ DEFAULT NOW()
);
-- Calculate uptime percentage for the last 30 days
SELECT
url,
COUNT(*) FILTER (WHERE state = 'up') * 100.0 / COUNT(*) AS uptime_pct
FROM uptime_checks
WHERE checked_at > NOW() - INTERVAL '30 days'
GROUP BY url;
This state machine approach — UP to DEGRADED to DOWN, with transitions only firing alerts — is the same pattern used internally by Temps, PagerDuty, and most commercial monitoring tools. The difference is how many retries and from how many locations you confirm before transitioning.
HTTP checks tell you if your application is responding. They don't tell you if your server is about to run out of disk space. According to Datadog's Container Report, 65% of container failures are caused by resource exhaustion — CPU, memory, or disk — not application errors.
On Linux, the /proc filesystem gives you everything. /proc/stat provides CPU tick counters. /proc/meminfo shows memory usage. No agent needed — just read the files:
# CPU usage (percentage over 1 second)
grep 'cpu ' /proc/stat; sleep 1; grep 'cpu ' /proc/stat
# Compare the idle field values to calculate usage
# Memory usage
awk '/MemTotal|MemAvailable/ {print $1, $2/1024 "MB"}' /proc/meminfo
# Disk usage
df -h / | tail -1 | awk '{print "Used:", $3, "of", $2, "(" $5 ")"}'
Set thresholds: alert at 85% CPU sustained for 5 minutes, 90% memory, or 85% disk. These numbers aren't arbitrary — they leave enough headroom for traffic spikes without being so sensitive they fire on normal load patterns.
If you're running containers, the Docker stats API gives you per-container resource usage without installing anything extra:
# Real-time container stats
docker stats --no-stream --format \
"{{.Name}}: CPU {{.CPUPerc}} | Mem {{.MemUsage}} | Net {{.NetIO}}"
# Programmatic access via API
curl -s --unix-socket /var/run/docker.sock \
http://localhost/containers/{id}/stats?stream=false | jq '.cpu_stats'
What makes container monitoring tricky is density. A server running 20 containers has 20 sets of metrics. You need to track not just absolute values but also resource limits — a container using 512MB of memory matters very differently depending on whether its limit is 1GB or 64GB.
Disk I/O bottlenecks are silent killers. Your HTTP checks pass fine until a database query triggers heavy disk reads and suddenly everything hangs. Monitor IOPS (input/output operations per second) and throughput separately — high IOPS with low throughput means lots of small random reads, which kills spinning disks and even degrades SSDs under heavy load.
[IMAGE: Server monitoring dashboard showing CPU, memory, disk, and network charts — search: "server resource monitoring dashboard grafana dark"]
The self-hosted monitoring space has matured significantly. Uptime Kuma, the most popular open-source uptime monitor, has over 63,000 stars on GitHub and receives active contributions from hundreds of developers. Here's how the main options compare.
| Tool | Focus | Language | GitHub Stars | Self-Hosted | Multi-Location | Alerting |
|---|---|---|---|---|---|---|
| Uptime Kuma | HTTP/TCP/DNS monitoring | Node.js | 63k+ | Yes | No (single instance) | 90+ channels |
| Gatus | Developer-centric monitoring | Go | 6.5k+ | Yes | Limited | Slack, Teams, email |
| Healthchecks.io | Cron/heartbeat monitoring | Python | 8.5k+ | Yes | No | 15+ channels |
| Prometheus + Blackbox | Metrics-driven probing | Go | 56k+ (Prometheus) | Yes | Via federation | Alertmanager |
Uptime Kuma is the easiest to set up. One Docker container, a SQLite database, and a clean web UI. It supports HTTP, TCP, DNS, and ping monitors with configurable intervals down to 20 seconds. The notification integrations are extensive — Slack, Discord, Telegram, PagerDuty, and about 90 others.
The limitation is scale. Uptime Kuma runs as a single Node.js process. There's no built-in multi-location checking, no clustering, and performance degrades beyond a few hundred monitors. For a single team monitoring 10-50 services, it's excellent. For anything larger, you'll hit walls.
Gatus takes a code-first approach. You define monitors in YAML, version them in Git, and deploy with your infrastructure. It's written in Go, compiles to a single binary, and uses minimal resources. Where Uptime Kuma is point-and-click, Gatus is Infrastructure-as-Code.
endpoints:
- name: production-api
url: https://api.example.com/health
interval: 30s
conditions:
- "[STATUS] == 200"
- "[RESPONSE_TIME] < 500"
- "[BODY].status == 'healthy'"
If you're already running Prometheus, the Blackbox Exporter adds HTTP, TCP, ICMP, and DNS probing. It fits naturally into the Prometheus ecosystem — you get Alertmanager for notifications and Grafana for dashboards. The downside is that it's the most complex setup: Prometheus, Blackbox Exporter, Alertmanager, and Grafana are four separate services to deploy and maintain.
Healthchecks.io solves a different problem: cron job monitoring. Instead of actively probing endpoints, it waits for your services to "phone home" at expected intervals. If a heartbeat doesn't arrive on time, it alerts. It's perfect for backup scripts, data pipelines, and scheduled tasks that you'd otherwise forget about until they've been silently failing for weeks.
We've run Uptime Kuma alongside commercial monitors for over a year. It catches the same incidents with comparable timing. The gap isn't in detection — it's in multi-region checking and team management features that single-instance tools can't provide.
Temps builds monitoring into the deployment platform instead of bolting it on afterward. Every container deployed through Temps gets HTTP monitoring and resource tracking automatically — no separate tool, no additional configuration, no extra infrastructure. The monitoring data feeds the same dashboard where you manage deployments.
When you deploy a service on Temps, the platform automatically sets up HTTP health checks against your configured health endpoint. Checks run at configurable intervals with the same retry-and-confirm pattern described earlier in this guide. Failed checks trigger state transitions (UP to DEGRADED to DOWN), and alerts fire only on transitions — not on every individual check failure.
Status code filtering lets you define which response codes count as healthy. A 301 redirect might be perfectly fine for a marketing site but a failure for an API endpoint. You control what "healthy" means per service.
Temps collects CPU, memory, and network metrics for every running container through the Docker stats API. These aren't sampled once a minute and averaged — they're streamed at high resolution and stored in TimescaleDB for efficient time-series queries.
The integrated dashboard shows resource usage alongside deployment history. When you see a memory spike, you can immediately correlate it with a specific deployment, rollback, or traffic event — without switching between three different tools.
Alerts route through configurable channels: email, webhooks, and Slack integrations. Because monitoring is built into the platform, alerts include deployment context — which service, which version, which node, and what changed recently. That context turns a "your site is down" notification into an actionable incident response starting point.
Most monitoring tools exist as standalone services because they were built for a world where deployment, observability, and alerting were separate concerns. Integrating monitoring into the deployment platform eliminates the most common failure mode in monitoring setups: the monitoring tool itself going unmonitored.
SLA math is simpler than vendors make it sound. The basic formula is: (total_minutes - downtime_minutes) / total_minutes * 100. According to the Uptime Institute's Annual Outage Analysis, the average data center outage lasts 100 minutes. Here's what the common SLA tiers actually mean in practice.
| SLA Level | Annual Downtime | Monthly Downtime | Daily Downtime |
|---|---|---|---|
| 99% | 3.65 days | 7.31 hours | 14.4 minutes |
| 99.9% | 8.77 hours | 43.8 minutes | 1.44 minutes |
| 99.95% | 4.38 hours | 21.9 minutes | 43.2 seconds |
| 99.99% | 52.6 minutes | 4.38 minutes | 8.6 seconds |
| 99.999% | 5.26 minutes | 26.3 seconds | 0.86 seconds |
99.999% uptime allows 5.26 minutes of downtime per year. That includes planned maintenance, DNS propagation, certificate renewals, and deployments. Google and AWS don't consistently achieve this across all services. If a startup promises you five nines, they either don't understand the math or they're redefining what counts as downtime.
For most web applications, 99.9% (43 minutes of monthly downtime) is an honest and achievable target. Aiming higher is fine. Promising higher is risky.
Here's the question nobody asks early enough: do maintenance windows count against your SLA? Most commercial SLA agreements exclude "scheduled maintenance" from uptime calculations. If you're calculating SLA for your own services, be explicit about this upfront. Your SQL query for SLA should look like:
SELECT
COUNT(*) FILTER (WHERE state = 'up') * 100.0 /
COUNT(*) FILTER (WHERE NOT is_maintenance_window) AS uptime_pct
FROM uptime_checks
WHERE checked_at > NOW() - INTERVAL '30 days'
AND NOT is_maintenance_window;
Don't cheat the number. If your users experienced downtime, it was downtime. Maintenance exclusions should cover pre-announced, user-notified windows only.
For production services, 30-60 second intervals strike the right balance between fast detection and low overhead. UptimeRobot's free tier uses 5-minute intervals, which means up to 5 minutes of undetected downtime. Paid tiers from Pingdom and Better Uptime support intervals as low as 30 seconds. If you're self-hosting, there's no cost difference between 30-second and 5-minute checks — go with 30 seconds.
Uptime monitoring answers one question: is the service reachable and responding? Application Performance Monitoring (APM) goes deeper — it traces individual requests through your code, identifies slow database queries, and profiles memory leaks. According to Gartner, the APM market reached $6.4 billion in 2024. You need uptime monitoring first, APM second. They're complementary, not competing.
Yes, but it requires running your own checker nodes in different regions. Deploy lightweight checker containers in 2-3 cloud regions (a $5/mo VPS in each region works fine), have them report results to a central coordinator, and require 2-of-3 confirmation before alerting. Uptime Kuma doesn't support this natively, but Gatus and custom solutions handle it well.
This is the "who watches the watchers" problem. The simplest solution: use a second, independent monitoring system to watch the first. A free-tier UptimeRobot check against your self-hosted monitor's status page costs nothing and catches the scenario where your monitor goes down silently. Alternatively, use a heartbeat pattern — your monitor sends a "still alive" ping to an external service like Healthchecks.io every minute. If the ping stops, you get alerted through a completely separate channel.
Uptime monitoring is one piece of the observability puzzle. It tells you that something broke, but not why. Pair it with error tracking to capture stack traces, request tracing to follow failures through your system, and resource monitoring to spot exhaustion before it causes outages.
If you're self-hosting your deployment infrastructure, the strongest approach is a platform that integrates monitoring alongside deployments, logs, and analytics. You avoid the duct-tape problem of wiring together 5 separate tools — and you avoid the $200+/month SaaS bill of Pingdom + Datadog + Sentry + Plausible combined.
Start with what you have. The Python monitor from this guide works. Uptime Kuma works. When you outgrow standalone tools and want everything in one place, Temps includes HTTP monitoring, container resource tracking, error tracking, and web analytics in a single self-hosted binary.