标签: health-check - 叹为观止

2026-03-16发表2026-05-01更新powershell / tip17 分钟读完 (大约2596个字)

适用于 PowerShell 5.1 及以上版本

系统管理员和运维工程师在日常工作中，经常需要面对各种系统故障和性能问题。当用户反馈系统卡顿、服务响应缓慢时，快速定位问题根因是恢复服务的关键。传统的排查方式是手动逐项检查——先看 CPU，再查内存，然后翻日志——不仅耗时，还容易遗漏关键线索。

通过 PowerShell 编写系统诊断脚本，可以将这些分散的检查步骤自动化，形成一套标准化的诊断流程。脚本可以在几秒内完成对硬件资源、操作系统状态、网络连接和安全配置的全面扫描，并以结构化报告的形式输出结果，帮助运维人员快速做出判断。

本文提供三个层次的诊断脚本：从硬件性能分析开始，到操作系统与服务状态检查，最后整合为一键全量诊断报告，方便直接集成到运维自动化平台中使用。

硬件与性能诊断

第一个脚本专注于硬件资源层面的诊断。它会采集 CPU 使用率、内存占用、磁盘空间等核心指标，并自动识别占用资源最高的进程，帮助快速定位性能瓶颈。

function Get-HardwareDiagnostic {
    [CmdletBinding()]
    param(
        [double]$CpuThreshold = 80,
        [double]$MemoryThreshold = 85,
        [double]$DiskThreshold = 90
    )

    $result = [ordered]@{
        Timestamp    = Get-Date -Format 'yyyy-MM-dd HH:mm:ss'
        ComputerName = $env:COMPUTERNAME
        Status       = 'Healthy'
        Alerts       = @()
    }

    # CPU 使用率检查
    $cpuCounter = '\Processor(_Total)\% Processor Time'
    $cpuSample1 = (Get-Counter -Counter $cpuCounter -SampleInterval 1 -MaxSamples 3).CounterSamples
    Start-Sleep -Seconds 1
    $cpuAvg = [math]::Round(($cpuSample1 | Measure-Object -Property CookedValue -Average).Average, 2)

    $result['CpuUsage'] = "$cpuAvg%"

    if ($cpuAvg -gt $CpuThreshold) {
        $result['Status'] = 'Warning'
        $result['Alerts'] += "CPU 使用率 ${cpuAvg}% 超过阈值 ${CpuThreshold}%"
    }

    # 内存使用检查
    $osInfo = Get-CimInstance -ClassName Win32_OperatingSystem
    $totalMem = [math]::Round($osInfo.TotalVisibleMemorySize / 1MB, 2)
    $freeMem = [math]::Round($osInfo.FreePhysicalMemory / 1MB, 2)
    $usedMemPercent = [math]::Round(($osInfo.TotalVisibleMemorySize - $osInfo.FreePhysicalMemory) / $osInfo.TotalVisibleMemorySize * 100, 2)

    $result['Memory'] = @{
        TotalGB     = $totalMem
        FreeGB      = $freeMem
        UsedPercent = "$usedMemPercent%"
    }

    if ($usedMemPercent -gt $MemoryThreshold) {
        $result['Status'] = 'Warning'
        $result['Alerts'] += "内存使用率 ${usedMemPercent}% 超过阈值 ${MemoryThreshold}%"
    }

    # 磁盘空间检查
    $disks = Get-CimInstance -ClassName Win32_LogicalDisk -Filter 'DriveType=3'
    $diskReport = foreach ($disk in $disks) {
        $freePercent = [math]::Round($disk.FreeSpace / $disk.Size * 100, 2)
        if ($freePercent -gt (100 - $DiskThreshold)) {
            $result['Status'] = 'Warning'
            $result['Alerts'] += "磁盘 $($disk.DeviceID) 可用空间仅 ${freePercent}%，低于安全阈值"
        }
        [ordered]@{
            Drive       = $disk.DeviceID
            TotalGB     = [math]::Round($disk.Size / 1GB, 2)
            FreeGB      = [math]::Round($disk.FreeSpace / 1GB, 2)
            FreePercent = "$freePercent%"
        }
    }
    $result['Disks'] = $diskReport

    # Top 10 资源占用进程
    $topProcesses = Get-Process |
        Sort-Object -Property WorkingSet64 -Descending |
        Select-Object -First 10 |
        ForEach-Object {
            [ordered]@{
                Name       = $_.Name
                PID        = $_.Id
                MemoryMB   = [math]::Round($_.WorkingSet64 / 1MB, 2)
                CpuSeconds = [math]::Round($_.CPU, 2)
            }
        }
    $result['TopProcesses'] = $topProcesses

    return [PSCustomObject]$result
}

# 执行硬件诊断
$hardwareReport = Get-HardwareDiagnostic -CpuThreshold 80 -MemoryThreshold 85 -DiskThreshold 90
$hardwareReport | ConvertTo-Json -Depth 5

执行结果示例：

{
    "Timestamp":  "2026-03-16 09:15:32",
    "ComputerName":  "SRV-PROD-01",
    "Status":  "Warning",
    "Alerts":  [
        "内存使用率 87.35% 超过阈值 85%",
        "磁盘 C: 可用空间仅 8.12%，低于安全阈值"
    ],
    "CpuUsage":  "42.67%",
    "Memory":  {
        "TotalGB":  32.00,
        "FreeGB":  4.05,
        "UsedPercent":  "87.35%"
    },
    "Disks":  [
        {
            "Drive":  "C:",
            "TotalGB":  256.00,
            "FreeGB":  20.78,
            "FreePercent":  "8.12%"
        },
        {
            "Drive":  "D:",
            "TotalGB":  1024.00,
            "FreeGB":  612.34,
            "FreePercent":  "59.80%"
        }
    ],
    "TopProcesses":  [
        {
            "Name":  "sqlservr",
            "PID":  4521,
            "MemoryMB":  8192.45,
            "CpuSeconds":  123456.78
        },
        {
            "Name":  "w3wp",
            "PID":  3312,
            "MemoryMB":  4096.12,
            "CpuSeconds":  56789.01
        }
    ]
}

操作系统与服务诊断

第二个脚本聚焦于操作系统层面，自动检查关键 Windows 服务的运行状态、扫描系统事件日志中的异常条目，并检测待安装的系统更新。

function Get-OSDiagnostic {
    [CmdletBinding()]
    param(
        [string[]]$CriticalServices = @('WinRM', 'EventLog', 'LanmanServer', 'LanmanWorkstation', 'Schedule'),
        [int]$EventLogHours = 24,
        [int]$MaxEvents = 50
    )

    $result = [ordered]@{
        Timestamp    = Get-Date -Format 'yyyy-MM-dd HH:mm:ss'
        ComputerName = $env:COMPUTERNAME
        Status       = 'Healthy'
        Alerts       = @()
    }

    # 操作系统基本信息
    $os = Get-CimInstance -ClassName Win32_OperatingSystem
    $result['OS'] = @{
        Caption       = $os.Caption
        Version       = $os.Version
        BuildNumber   = $os.BuildNumber
        LastBootTime  = $os.LastBootUpTime.ToString('yyyy-MM-dd HH:mm:ss')
        UptimeDays    = [math]::Round((Get-Date) - $os.LastBootUpTime | Select-Object -ExpandProperty TotalDays, 1)
    }

    # 关键服务状态检查
    $serviceReport = foreach ($svcName in $CriticalServices) {
        $svc = Get-Service -Name $svcName -ErrorAction SilentlyContinue
        if ($svc) {
            $status = if ($svc.Status -eq 'Running') { 'OK' } else { 'Alert' }
            if ($status -eq 'Alert') {
                $result['Status'] = 'Warning'
                $result['Alerts'] += "服务 $svcName 状态异常: $($svc.Status)"
            }
            [ordered]@{
                Name        = $svcName
                DisplayName = $svc.DisplayName
                Status      = $svc.Status.ToString()
                StartType   = $svc.StartType.ToString()
                CheckResult = $status
            }
        } else {
            $result['Alerts'] += "服务 $svcName 未找到"
            [ordered]@{
                Name        = $svcName
                DisplayName = 'N/A'
                Status      = 'NotFound'
                StartType   = 'N/A'
                CheckResult = 'Error'
            }
        }
    }
    $result['Services'] = $serviceReport

    # 事件日志异常检查（最近 N 小时的错误和警告）
    $startTime = (Get-Date).AddHours(-$EventLogHours)
    $eventFilter = @{
        LogName   = 'System'
        Level     = 2, 3
        StartTime = $startTime
    }
    $errorEvents = Get-WinEvent -FilterHashtable $eventFilter -MaxEvents $MaxEvents -ErrorAction SilentlyContinue

    $eventSummary = $errorEvents |
        Group-Object -Property ProviderName |
        Sort-Object -Property Count -Descending |
        Select-Object -First 10 |
        ForEach-Object {
            [ordered]@{
                Source   = $_.Name
                Count    = $_.Count
                Examples = ($_.Group | Select-Object -First 2 | ForEach-Object { "$($_.TimeCreated.ToString('HH:mm:ss')) $($_.Message.Substring(0, [math]::Min(80, $_.Message.Length)))" })
            }
        }
    $result['EventLogErrors'] = @{
        TimeRange   = "最近 ${EventLogHours} 小时"
        TotalErrors = if ($errorEvents) { $errorEvents.Count } else { 0 }
        TopSources  = $eventSummary
    }

    if ($errorEvents -and $errorEvents.Count -gt 20) {
        $result['Status'] = 'Warning'
        $result['Alerts'] += "系统事件日志在最近 ${EventLogHours} 小时内有 $($errorEvents.Count) 条错误/警告"
    }

    # 待安装系统更新检查（需要 PSWindowsUpdate 模块）
    $updateAvailable = $false
    try {
        Import-Module PSWindowsUpdate -ErrorAction Stop
        $updates = Get-WindowsUpdate -AcceptAll -Install -AutoReboot:$false -WhatIf 2>$null
        if ($updates) {
            $updateAvailable = $true
            $result['PendingUpdates'] = $updates | ForEach-Object {
                @{ Title = $_.Title; Size = $_.Size }
            }
            $result['Alerts'] += "有 $($updates.Count) 个系统更新待安装"
        }
    } catch {
        $result['PendingUpdates'] = '无法检查（PSWindowsUpdate 模块未安装）'
    }

    return [PSCustomObject]$result
}

# 执行操作系统诊断
$osReport = Get-OSDiagnostic -CriticalServices @('WinRM', 'EventLog', 'LanmanServer', 'LanmanWorkstation', 'Schedule', 'Spooler') -EventLogHours 24
$osReport | ConvertTo-Json -Depth 5

执行结果示例：

{
    "Timestamp":  "2026-03-16 09:16:45",
    "ComputerName":  "SRV-PROD-01",
    "Status":  "Warning",
    "Alerts":  [
        "服务 Spooler 状态异常: Stopped",
        "系统事件日志在最近 24 小时内有 47 条错误/警告"
    ],
    "OS":  {
        "Caption":  "Microsoft Windows Server 2022 Datacenter",
        "Version":  "10.0.20348",
        "BuildNumber":  "20348",
        "LastBootTime":  "2026-03-10 03:00:00",
        "UptimeDays":  6.3
    },
    "Services":  [
        {
            "Name":  "WinRM",
            "DisplayName":  "Windows Remote Management (WS-Management)",
            "Status":  "Running",
            "StartType":  "Automatic",
            "CheckResult":  "OK"
        },
        {
            "Name":  "Spooler",
            "DisplayName":  "Print Spooler",
            "Status":  "Stopped",
            "StartType":  "Automatic",
            "CheckResult":  "Alert"
        }
    ],
    "EventLogErrors":  {
        "TimeRange":  "最近 24 小时",
        "TotalErrors":  47,
        "TopSources":  [
            {
                "Source":  "Microsoft-Windows-Disk",
                "Count":  18,
                "Examples":  [
                    "08:32:15 The device, \\Device\\Harddisk1\\DR1, has a bad block.",
                    "09:15:22 The device, \\Device\\Harddisk1\\DR1, has a bad block."
                ]
            }
        ]
    },
    "PendingUpdates":  "无法检查（PSWindowsUpdate 模块未安装）"
}

综合诊断报告

第三个脚本将前面的各项检查整合为一键全量诊断，计算健康评分，并生成可读性更好的 HTML 报告，方便通过邮件或 Web 平台分享。

function Invoke-FullSystemDiagnostic {
    [CmdletBinding()]
    param(
        [string]$OutputPath = "$env:TEMP\SystemDiagnosticReport.html",
        [double]$CpuThreshold = 80,
        [double]$MemoryThreshold = 85,
        [double]$DiskThreshold = 90
    )

    Write-Host "开始全量系统诊断..." -ForegroundColor Cyan
    $diagStart = Get-Date

    # 采集各项指标
    Write-Host "  [1/4] 采集硬件指标..." -ForegroundColor Gray
    $os = Get-CimInstance -ClassName Win32_OperatingSystem
    $cpuSample = (Get-Counter -Counter '\Processor(_Total)\% Processor Time' -SampleInterval 1 -MaxSamples 3).CounterSamples
    $cpuAvg = [math]::Round(($cpuSample | Measure-Object -Property CookedValue -Average).Average, 2)
    $memUsedPercent = [math]::Round(($os.TotalVisibleMemorySize - $os.FreePhysicalMemory) / $os.TotalVisibleMemorySize * 100, 2)
    $disks = Get-CimInstance -ClassName Win32_LogicalDisk -Filter 'DriveType=3'

    Write-Host "  [2/4] 检查服务状态..." -ForegroundColor Gray
    $criticalSvcs = @('WinRM', 'EventLog', 'LanmanServer', 'LanmanWorkstation', 'Schedule')
    $svcResults = foreach ($name in $criticalSvcs) {
        $s = Get-Service -Name $name -ErrorAction SilentlyContinue
        @{ Name = $name; Status = if ($s) { $s.Status.ToString() } else { 'NotFound' } }
    }

    Write-Host "  [3/4] 扫描事件日志..." -ForegroundColor Gray
    $startTime = (Get-Date).AddHours(-24)
    $errors = @(Get-WinEvent -FilterHashtable @{ LogName = 'System'; Level = 2; StartTime = $startTime } -MaxEvents 100 -ErrorAction SilentlyContinue)
    $warnings = @(Get-WinEvent -FilterHashtable @{ LogName = 'System'; Level = 3; StartTime = $startTime } -MaxEvents 100 -ErrorAction SilentlyContinue)

    Write-Host "  [4/4] 计算健康评分..." -ForegroundColor Gray

    # 健康评分计算（满分 100）
    $score = 100

    # CPU 扣分（每超阈值 1% 扣 0.5 分，最多扣 20 分）
    $cpuDeduction = [math]::Min(20, [math]::Max(0, ($cpuAvg - $CpuThreshold) * 0.5))
    $score -= $cpuDeduction

    # 内存扣分
    $memDeduction = [math]::Min(20, [math]::Max(0, ($memUsedPercent - $MemoryThreshold) * 0.5))
    $score -= $memDeduction

    # 磁盘扣分
    foreach ($disk in $disks) {
        $diskUsedPercent = [math]::Round(($disk.Size - $disk.FreeSpace) / $disk.Size * 100, 2)
        if ($diskUsedPercent -gt $DiskThreshold) {
            $score -= [math]::Min(10, [math]::Max(0, ($diskUsedPercent - $DiskThreshold) * 0.3))
        }
    }

    # 服务异常扣分（每个异常服务扣 5 分，最多扣 25 分）
    $stoppedSvcs = @($svcResults | Where-Object { $_.Status -ne 'Running' })
    $svcDeduction = [math]::Min(25, $stoppedSvcs.Count * 5)
    $score -= $svcDeduction

    # 事件日志错误扣分
    $logDeduction = [math]::Min(15, [math]::Round($errors.Count / 5, 0))
    $score -= $logDeduction

    $score = [math]::Max(0, [math]::Round($score, 0))

    # 确定总体状态
    $overallStatus = if ($score -ge 80) { 'Healthy' } elseif ($score -ge 50) { 'Warning' } else { 'Critical' }

    $diagDuration = [math]::Round(((Get-Date) - $diagStart).TotalSeconds, 1)

    # 生成 HTML 报告
    $html = @"
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="UTF-8">
<title>系统诊断报告 - $($env:COMPUTERNAME) - $(Get-Date -Format 'yyyy-MM-dd')</title>
<style>
body { font-family: 'Segoe UI', sans-serif; margin: 20px; background: #f5f5f5; }
.container { max-width: 960px; margin: auto; background: white; padding: 30px; border-radius: 8px; box-shadow: 0 2px 8px rgba(0,0,0,0.1); }
h1 { color: #0078d4; border-bottom: 2px solid #0078d4; padding-bottom: 10px; }
.score { font-size: 48px; font-weight: bold; text-align: center; padding: 20px; }
.score.healthy { color: #107c10; }
.score.warning { color: #ff8c00; }
.score.critical { color: #d13438; }
table { width: 100%; border-collapse: collapse; margin: 10px 0; }
th, td { border: 1px solid #ddd; padding: 8px 12px; text-align: left; }
th { background: #0078d4; color: white; }
tr:nth-child(even) { background: #f9f9f9; }
.badge { padding: 3px 8px; border-radius: 4px; font-size: 12px; font-weight: bold; }
.badge-ok { background: #dff6dd; color: #107c10; }
.badge-warn { background: #fff4ce; color: #ff8c00; }
.badge-error { background: #fde7e9; color: #d13438; }
</style>
</head>
<body>
<div class="container">
<h1>系统诊断报告</h1>
<p>计算机: <strong>$($env:COMPUTERNAME)</strong> | 生成时间: <strong>$(Get-Date -Format 'yyyy-MM-dd HH:mm:ss')</strong> | 耗时: ${diagDuration}s</p>
<div class="score $overallStatus.ToLowerInvariant()">$score / 100</div>
<p style="text-align:center; font-size:18px;">总体状态: <strong>$overallStatus</strong></p>

<h2>CPU 使用率</h2>
<p>平均使用率: <strong>${cpuAvg}%</strong> (阈值: ${CpuThreshold}%)</p>

<h2>内存使用率</h2>
<p>已用: <strong>${memUsedPercent}%</strong> (阈值: ${MemoryThreshold}%)</p>

<h2>磁盘空间</h2>
<table>
<tr><th>驱动器</th><th>总容量</th><th>可用空间</th><th>可用百分比</th></tr>
$(foreach ($d in $disks) {
    $freePct = [math]::Round($d.FreeSpace / $d.Size * 100, 2)
    $badge = if ($freePct -gt 20) { 'badge-ok' } elseif ($freePct -gt 10) { 'badge-warn' } else { 'badge-error' }
    "<tr><td>$($d.DeviceID)</td><td>$([math]::Round($d.Size/1GB,2)) GB</td><td>$([math]::Round($d.FreeSpace/1GB,2)) GB</td><td><span class=`"badge $badge`">${freePct}%</span></td></tr>"
})

<h2>关键服务状态</h2>
<table>
<tr><th>服务名</th><th>状态</th></tr>
$(foreach ($s in $svcResults) {
    $badge = if ($s.Status -eq 'Running') { 'badge-ok' } else { 'badge-error' }
    "<tr><td>$($s.Name)</td><td><span class=`"badge $badge`">$($s.Status)</span></td></tr>"
})

<h2>事件日志摘要（最近 24 小时）</h2>
<p>错误: <strong>$($errors.Count)</strong> 条 | 警告: <strong>$($warnings.Count)</strong> 条</p>

</div>
</body>
</html>
"@

    $html | Out-File -FilePath $OutputPath -Encoding UTF8 -Force
    Write-Host "诊断完成！健康评分: $score / 100 [$overallStatus]" -ForegroundColor $(if ($overallStatus -eq 'Healthy') { 'Green' } elseif ($overallStatus -eq 'Warning') { 'Yellow' } else { 'Red' })
    Write-Host "HTML 报告已保存至: $OutputPath" -ForegroundColor Cyan

    return [PSCustomObject]@{
        ComputerName = $env:COMPUTERNAME
        Score        = $score
        Status       = $overallStatus
        CpuUsage     = "$cpuAvg%"
        MemoryUsage  = "$memUsedPercent%"
        Errors24h    = $errors.Count
        Warnings24h  = $warnings.Count
        ReportPath   = $OutputPath
    }
}

# 执行全量诊断并生成报告
$report = Invoke-FullSystemDiagnostic -OutputPath "$env:TEMP\SystemDiagnosticReport.html"
$report

执行结果示例：

开始全量系统诊断...
  [1/4] 采集硬件指标...
  [2/4] 检查服务状态...
  [3/4] 扫描事件日志...
  [4/4] 计算健康评分...
诊断完成！健康评分: 72 / 100 [Warning]
HTML 报告已保存至: C:\Users\admin\AppData\Local\Temp\SystemDiagnosticReport.html

ComputerName : SRV-PROD-01
Score        : 72
Status       : Warning
CpuUsage     : 42.67%
MemoryUsage  : 87.35%
Errors24h    : 23
Warnings24h  : 31
ReportPath   : C:\Users\admin\AppData\Local\Temp\SystemDiagnosticReport.html

注意事项

运行权限：部分检查（如事件日志查询、服务状态枚举）需要管理员权限。建议以提升模式启动 PowerShell，或将脚本加入计划任务以 SYSTEM 身份运行。
性能影响：CPU 使用率采样需要短暂等待（默认 3 秒采样周期），在极端高负载场景下，脚本本身的执行也会消耗资源。生产环境可调整 -MaxSamples 参数降低采样频率。
跨平台兼容：本文脚本以 Windows 平台为主，使用了 Win32_OperatingSystem、Get-Counter 等 Windows 专用命令。如需在 Linux 上运行，应替换为 /proc/meminfo、vmstat 等原生命令的封装。
健康评分的阈值：评分算法中的扣分权重（CPU 20 分、内存 20 分、磁盘 10 分、服务 25 分、日志 15 分）可根据实际运维需求调整。核心服务密集型环境应提高服务权重的扣分比例。
HTML 报告安全：生成的 HTML 报告包含服务器名称、资源数据等敏感信息，传输时应通过内部网络或加密渠道分享，避免直接暴露在公网上。
定时执行建议：可以将 Invoke-FullSystemDiagnostic 配合 Windows 计划任务或 CI/CD 流水线定时执行，每天生成一份诊断报告。当健康评分低于设定阈值时自动触发告警通知，实现主动式运维监控。

2025-09-23发表2026-04-30更新powershell / tip13 分钟读完 (大约1961个字)

PowerShell 技能连载 - 微服务健康检查

适用于 PowerShell 7.0 及以上版本

在微服务架构中，服务之间的依赖关系错综复杂。一个服务异常可能引发连锁故障，导致整个系统崩溃。为了及时发现问题并触发自动恢复机制，我们需要对每个服务进行持续的健康检查。健康检查通常通过 HTTP 端点暴露服务的运行状态，包括数据库连接、缓存可用性、外部 API 响应等关键指标。

Kubernetes、Docker Swarm、Consul 等容器编排和服务发现工具都依赖健康检查端点来决定流量路由和容器重启策略。对于 PowerShell 运维人员来说，能够用脚本快速探测所有微服务的健康状态，是日常巡检和故障排查的基本功。

本文将从零开始，用 PowerShell 构建一套轻量级的微服务健康检查工具：先封装单服务探测函数，再扩展为批量并行检查，最后输出结构化的健康报告。

单服务健康检查函数

我们首先封装一个通用的健康检查函数，支持 HTTP 和 HTTPS 端点探测，返回结构化的检查结果。该函数会记录响应时间、状态码以及响应体中的关键信息。

function Invoke-HealthCheck {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory)]
        [string]$Name,

        [Parameter(Mandatory)]
        [string]$Url,

        [int]$TimeoutSeconds = 5,

        [string]$ExpectedStatus = '200'
    )

    $result = [ordered]@{
        Name       = $Name
        Url        = $Url
        Status     = 'Unknown'
        StatusCode = $null
        LatencyMs  = $null
        Timestamp  = Get-Date -Format 'yyyy-MM-dd HH:mm:ss'
        Error      = $null
    }

    try {
        $stopwatch = [System.Diagnostics.Stopwatch]::StartNew()
        $response = Invoke-WebRequest -Uri $Url -TimeoutSec $TimeoutSeconds `
            -UseBasicParsing -ErrorAction Stop
        $stopwatch.Stop()

        $result.StatusCode = [int]$response.StatusCode
        $result.LatencyMs  = $stopwatch.ElapsedMilliseconds
        $result.Status     = if ($response.StatusCode -eq $ExpectedStatus) {
            'Healthy'
        } else {
            'Degraded'
        }
    }
    catch {
        $stopwatch.Stop()
        $result.Status    = 'Unhealthy'
        $result.LatencyMs = $stopwatch.ElapsedMilliseconds
        $result.Error     = $_.Exception.Message
    }

    [PSCustomObject]$result
}

PS> Invoke-HealthCheck -Name '用户服务' -Url 'https://api.example.com/users/health'

Name       : 用户服务
Url        : https://api.example.com/users/health
Status     : Healthy
StatusCode : 200
LatencyMs  : 47
Timestamp  : 2025-09-23 08:15:32
Error      :

批量并行健康检查

在生产环境中，微服务数量通常有几十甚至上百个。逐个串行检查效率太低，我们利用 PowerShell 的 ForEach-Object -Parallel（PowerShell 7+）实现并行探测，并设置合理的并发度和超时时间。

$services = @(
    @{ Name = 'API 网关';    Url = 'https://api.example.com/gateway/health' }
    @{ Name = '用户服务';    Url = 'https://api.example.com/users/health' }
    @{ Name = '订单服务';    Url = 'https://api.example.com/orders/health' }
    @{ Name = '支付服务';    Url = 'https://api.example.com/payment/health' }
    @{ Name = '库存服务';    Url = 'https://api.example.com/inventory/health' }
    @{ Name = '通知服务';    Url = 'https://api.example.com/notification/health' }
)

# 批量并行检查，最大并发 8 个
$healthResults = $services | ForEach-Object -ThrottleLimit 8 -Parallel {
    # 在并行运行空间中重新定义函数
    function Invoke-HealthCheck {
        param($Name, $Url, $TimeoutSeconds = 5)
        $result = [ordered]@{
            Name       = $Name
            Url        = $Url
            Status     = 'Unknown'
            StatusCode = $null
            LatencyMs  = $null
            Timestamp  = (Get-Date -Format 'yyyy-MM-dd HH:mm:ss')
            Error      = $null
        }
        try {
            $sw = [System.Diagnostics.Stopwatch]::StartNew()
            $r = Invoke-WebRequest -Uri $Url -TimeoutSec $TimeoutSeconds `
                -UseBasicParsing -ErrorAction Stop
            $sw.Stop()
            $result.StatusCode = [int]$r.StatusCode
            $result.LatencyMs  = $sw.ElapsedMilliseconds
            $result.Status     = if ($r.StatusCode -eq 200) { 'Healthy' } else { 'Degraded' }
        }
        catch {
            $sw.Stop()
            $result.Status    = 'Unhealthy'
            $result.LatencyMs = $sw.ElapsedMilliseconds
            $result.Error     = $_.Exception.Message
        }
        [PSCustomObject]$result
    }

    Invoke-HealthCheck -Name $_.Name -Url $_.Url
}

# 按状态排序输出：不健康 > 降级 > 健康
$statusOrder = @{ Healthy = 2; Degraded = 1; Unhealthy = 0 }
$healthResults | Sort-Object { $statusOrder[$_.Status] } | Format-Table -AutoSize

Name       Url                                                    Status     StatusCode LatencyMs Timestamp           Error
----       ---                                                    ------     ---------- --------- ---------           -----
支付服务   https://api.example.com/payment/health                 Unhealthy            0        5012 2025-09-23 08:16:01 Unable to connect...
库存服务   https://api.example.com/inventory/health               Degraded           503          234 2025-09-23 08:16:01
API 网关   https://api.example.com/gateway/health                 Healthy            200           38 2025-09-23 08:16:01
用户服务   https://api.example.com/users/health                   Healthy            200           47 2025-09-23 08:16:01
订单服务   https://api.example.com/orders/health                  Healthy            200           62 2025-09-23 08:16:01
通知服务   https://api.example.com/notification/health            Healthy            200           85 2025-09-23 08:16:01

生成结构化健康报告

检查结果可以导出为 JSON 或 HTML 报告，方便集成到监控告警系统。下面的脚本将结果输出为 JSON 文件，并生成一份简洁的 HTML 报告。

function Export-HealthReport {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory)]
        [PSCustomObject[]]$Results,

        [string]$OutputPath = './health-report'
    )

    $timestamp = Get-Date -Format 'yyyyMMdd-HHmmss'

    # 导出 JSON 报告
    $jsonPath = Join-Path $OutputPath "health-$timestamp.json"
    $Results | ConvertTo-Json -Depth 5 | Out-File -FilePath $jsonPath -Encoding utf8

    # 统计摘要
    $healthyCount   = ($Results | Where-Object Status -eq 'Healthy').Count
    $degradedCount  = ($Results | Where-Object Status -eq 'Degraded').Count
    $unhealthyCount = ($Results | Where-Object Status -eq 'Unhealthy').Count
    $totalCount     = $Results.Count

    $summary = @{
        Total      = $totalCount
        Healthy    = $healthyCount
        Degraded   = $degradedCount
        Unhealthy  = $unhealthyCount
        CheckTime  = (Get-Date -Format 'yyyy-MM-dd HH:mm:ss')
        Overall    = if ($unhealthyCount -gt 0) { 'CRITICAL' }
                     elseif ($degradedCount -gt 0) { 'WARNING' }
                     else { 'OK' }
    }

    Write-Host "`n========== 健康检查报告 ==========" -ForegroundColor Cyan
    Write-Host "检查时间:  $($summary.CheckTime)"
    Write-Host "服务总数:  $totalCount"
    Write-Host "健康:      $healthyCount"  -ForegroundColor Green
    Write-Host "降级:      $degradedCount"  -ForegroundColor Yellow
    Write-Host "不健康:    $unhealthyCount"  -ForegroundColor Red
    Write-Host "总体状态:  $($summary.Overall)" -ForegroundColor $(
        if ($summary.Overall -eq 'OK') { 'Green' }
        elseif ($summary.Overall -eq 'WARNING') { 'Yellow' }
        else { 'Red' }
    )
    Write-Host "===================================`n"

    # 导出摘要 JSON
    $summaryPath = Join-Path $OutputPath "summary-$timestamp.json"
    $summary | ConvertTo-Json | Out-File -FilePath $summaryPath -Encoding utf8

    Write-Host "JSON 报告已保存: $jsonPath"
    Write-Host "摘要已保存:      $summaryPath"
}

PS> Export-HealthReport -Results $healthResults -OutputPath './reports'

========== 健康检查报告 ==========
检查时间:  2025-09-23 08:17:15
服务总数:  6
健康:      4
降级:      1
不健康:    1
总体状态:  CRITICAL
===================================

JSON 报告已保存: /reports/health-20250923-081715.json
摘要已保存:      /reports/summary-20250923-081715.json

带告警阈值的服务配置文件

对于大规模服务集群，把服务列表和告警阈值维护在 JSON 配置文件中比硬编码更灵活。下面的示例展示了如何从配置文件加载服务定义并执行检查。

# 配置文件 services.json 示例
$configContent = @{
    services = @(
        @{
            name            = 'API 网关'
            url             = 'https://api.example.com/gateway/health'
            timeoutSeconds  = 3
            latencyWarnMs   = 200
            latencyCritMs   = 1000
        }
        @{
            name            = '用户服务'
            url             = 'https://api.example.com/users/health'
            timeoutSeconds  = 5
            latencyWarnMs   = 500
            latencyCritMs   = 2000
        }
        @{
            name            = '订单服务'
            url             = 'https://api.example.com/orders/health'
            timeoutSeconds  = 10
            latencyWarnMs   = 1000
            latencyCritMs   = 5000
        }
    )
    notify = @{
        webhookUrl = 'https://hooks.slack.com/services/XXX/YYY/ZZZ'
        enabled    = $true
    }
}

$configPath = './services.json'
$configContent | ConvertTo-Json -Depth 5 | Out-File -FilePath $configPath -Encoding utf8

PS> Get-Content ./services.json | ConvertFrom-Json | ConvertTo-Json -Depth 3

{
  "services": [
    {
      "name": "API 网关",
      "url": "https://api.example.com/gateway/health",
      "timeoutSeconds": 3,
      "latencyWarnMs": 200,
      "latencyCritMs": 1000
    },
    {
      "name": "用户服务",
      "url": "https://api.example.com/users/health",
      "timeoutSeconds": 5,
      "latencyWarnMs": 500,
      "latencyCritMs": 2000
    },
    {
      "name": "订单服务",
      "url": "https://api.example.com/orders/health",
      "timeoutSeconds": 10,
      "latencyWarnMs": 1000,
      "latencyCritMs": 5000
    }
  ],
  "notify": {
    "webhookUrl": "https://hooks.slack.com/services/XXX/YYY/ZZZ",
    "enabled": true
  }
}

接下来从配置文件加载并执行检查，根据延迟阈值自动判定告警级别。

# 加载配置并执行检查
$config = Get-Content ./services.json -Raw | ConvertFrom-Json

$checkResults = foreach ($svc in $config.services) {
    $check = Invoke-HealthCheck -Name $svc.name -Url $svc.url `
        -TimeoutSeconds $svc.timeoutSeconds

    # 根据延迟阈值判定告警级别
    $alertLevel = 'OK'
    if ($check.Status -eq 'Unhealthy') {
        $alertLevel = 'CRITICAL'
    }
    elseif ($check.LatencyMs -gt $svc.latencyCritMs) {
        $alertLevel = 'CRITICAL'
    }
    elseif ($check.LatencyMs -gt $svc.latencyWarnMs) {
        $alertLevel = 'WARNING'
    }

    $check | Add-Member -NotePropertyName 'AlertLevel' `
        -NotePropertyValue $alertLevel -PassThru
}

$checkResults | Format-Table Name, Status, AlertLevel, LatencyMs -AutoSize

Name       Status   AlertLevel LatencyMs
----       ------   ---------- ---------
API 网关   Healthy  OK                35
用户服务   Healthy  WARNING          612
订单服务   Healthy  OK                78

注意事项

超时设置要合理：健康检查的超时时间不宜过长，通常 3-5 秒即可。过长的超时会导致批量检查时总耗时增加，也会拖慢容器编排系统的故障检测速度。
并行运行的函数作用域隔离：ForEach-Object -Parallel 在独立的运行空间中执行，外部定义的函数和变量不会自动继承。需要在并行块内重新定义函数，或使用 $using: 传递变量。
HTTPS 证书验证：内部服务的健康检查端点可能使用自签名证书。在测试环境中可以通过 -SkipCertificateCheck 参数跳过验证，但生产环境应配置受信任的 CA 证书。
配置文件管理：服务列表和阈值应维护在 JSON 或 YAML 配置文件中，纳入版本控制。避免在脚本中硬编码服务地址，便于环境迁移和 CI/CD 集成。
告警去重与静默：当某个服务持续不健康时，应避免重复发送告警。建议在告警逻辑中加入静默窗口（如 5 分钟内同一服务不重复告警），减少告警疲劳。
日志持久化：每次健康检查的结果应持久化存储，用于趋势分析和容量规划。可以将 JSON 报告写入时序数据库（如 InfluxDB）或对象存储（如 S3），配合 Grafana 等可视化工具查看历史趋势。

硬件与性能诊断

操作系统与服务诊断

综合诊断报告

注意事项

单服务健康检查函数

批量并行健康检查

生成结构化健康报告

带告警阈值的服务配置文件

注意事项

链接

分类

最新文章

归档

标签