Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ELK how we use it

dknx01
August 02, 2016
Programming
0
130

ELK how we use it

dknx01

August 02, 2016
Tweet

More Decks by dknx01

See All by dknx01
Software design patterns in the Symfony world
dknx01
0
130
Symfony Panther - an introduction and review
dknx01
1
270
Clean code for beginners
dknx01
1
160
How not to do a code review
dknx01
0
66
MongoDB in Symfony2 with Doctrine - Slides
dknx01
0
46
MongoDB in Symfony2 with Doctrine
dknx01
0
66
Logging with Elastichsearch Logstash Kibana
dknx01
0
220

Other Decks in Programming

See All in Programming
Java 22 Overview
kishida
1
190
PHPはいつから死んでいるかの調査
chiroruxx
1
400
OpenAPIを中心に考えるAPI開発入門 / Introduction to API Development with a Focus on OpenAPI
seike460
PRO
2
170
MetricKitで予期せぬ終了を検知する話 / Detect unexpected termination with MetricKit
nekowen
1
190
Elm Form Validation
bkuhlmann
0
510
1BRC--Nerd Sniping the Java Community
gunnarmorling
0
340
Komplexe Oberflächen mit SVG und der Web Animation API
joergneumann
0
680
Fragment Composition of GraphQL
quramy
7
1k
Elm 0.19.0 Changes
bkuhlmann
0
490
AWS CDKコントリビュートTIPS / aws-cdk-contribution-tips
gotok365
3
240
VSCodeでのDatabricks開発もお勧めしたい/I would also recommend Databricks development with VSCode.
kazumain
0
260
Goのエラースタックトレースの歴史と今後
sonatard
9
1.6k

Featured

See All Featured
KATA
mclloyd
15
12k
Git: the NoSQL Database
bkeepers
PRO
422
63k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
226
51k
Put a Button on it: Removing Barriers to Going Fast.
kastner
58
3.1k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
79
43k
Scaling GitHub
holman
457
140k
Rails Girls Zürich Keynote
gr2m
91
13k
What's in a price? How to price your products and services
michaelherold
237
11k
How GitHub Uses GitHub to Build GitHub
holman
468
290k
Agile that works and the tools we love
rasmusluckow
325
20k
Fireside Chat
paigeccino
21
2.6k
Six Lessons from altMBA
skipperchong
21
3k

Transcript

  1. Logging with ELK How we use it a secured environment

    or mabye a strange environment

  2. Some basic infos • PHP developer • working at: Little

    Bird GmbH • Needed to handle our log (exception) much better

  3. What is ELK Elasticsearch • search engine (Lucene based) •

    indices data • provides REST-API • saves data as NoSQL (JSON)

  4. What is ELK Logstash • Log data processor / ETL

    • 165+ plugins for inputs (files, TCP/UDP-Ports, STDIN, etc.) • filter, normalise and transform data (Date-Format, GeoIP, RegExp, Anonymize, etc.) • send data to STDOUT, databases, files, chats, nagios etc.

  5. What is ELK Kibana • nodeJS based GUI for elasticsearch

    • data visualisation (charts) • data analyses

  6. Current situation and why to change • Several hosting partner

    with different systems • Writing separate log files for each customer (Symptoms and Apache) • Exception are catched and send via email to a shared mail account • Not every developer has access to mail account • Bugs are not always reported with stackstrace/infos • Hard to track if exception occurred on other system or many times

  7. Our environment - our problems • Many hosting providers •

    Different OS: ◦ Debian ◦ Ubuntu ◦ SuSe • Different access rights ◦ Full access (internal system) ◦ Only one port: 443 ◦ Non-HTTP(S)/SMTP access only on request • No central server • One separate log file per customer (environment)

  8. How we solved it • Central logging server on our

    in-house system • Tunneling the desired connection through port 443 • Application server only needs ◦ Stunnel - a tunneling software ◦ Java - we need it for the application, too ◦ Logstash as standalone downloaded application • Customer (environment) name is extracted from file name

  9. The infrastructure with logging server

  10. That’s how it looks like

  11. That’s how it looks like

  12. What to do next • Central log server fail over

    (more than one Redis, Elasticsearch server) • Automatical analysation of log and notify developers • Only process neccessary log messages

  13. End