Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Intro to Log Management

Elasticsearch Inc
April 09, 2014
Programming
2
200

Intro to Log Management

This presentation was co-presented by Jordan Sissel (logstash author) and Lennart Koopman (graylog2 author) to teach the basic ideas and problems in the log management space.

It was presented at OSDC 2014 in Berlin.

Elasticsearch Inc

April 09, 2014
Tweet

More Decks by Elasticsearch Inc

See All by Elasticsearch Inc
OSCON: Scaling a distributed engineering team from 50-250
elasticsearch
13
1.4k
Stuff a Search Engine Can Do
elasticsearch
17
1.6k
Using Elastic to monitor anything
elasticsearch
3
1.5k
Log all the things!
elasticsearch
4
1.1k
Why Elastic? @ 50th Vinitaly 2016
elasticsearch
5
1.9k
What's New In Elasticland?
elasticsearch
3
880
Kibana, Timelion, Graph Meetup
elasticsearch
3
770
Elastic for Time Series Data and Predictive Analytics
elasticsearch
4
3k
Elastic 2.0
elasticsearch
1
740

Other Decks in Programming

See All in Programming
Laravel や Symfony で手っ取り早く
OpenAPI のドキュメントを作成する
azuki
2
120
ふかぼれ!CSSセレクターモジュール / Fukabore! CSS Selectors Module
petamoriken
0
150
CSC509 Lecture 12
javiergs
PRO
0
160
3 Effective Rules for Using Signals in Angular
manfredsteyer
PRO
1
100
役立つログに取り組もう
irof
28
9.6k
Ethereum_.pdf
nekomatu
0
460
GitHub Actionsのキャッシュと手を挙げることの大切さとそれに必要なこと
satoshi256kbyte
5
430
Outline View in SwiftUI
1024jp
1
330
Hotwire or React? ~アフタートーク・本編に含めなかった話~ / Hotwire or React? after talk
harunatsujita
1
120
アジャイルを支えるテストアーキテクチャ設計/Test Architecting for Agile
goyoki
9
3.3k
ヤプリ新卒SREの オンボーディング
masaki12
0
130
OSSで起業してもうすぐ10年 / Open Source Conference 2024 Shimane
furukawayasuto
0
100

Featured

See All Featured
Optimising Largest Contentful Paint
csswizardry
33
2.9k
Documentation Writing (for coders)
carmenintech
65
4.4k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
28
8.2k
Git: the NoSQL Database
bkeepers
PRO
427
64k
What's in a price? How to price your products and services
michaelherold
243
12k
Designing Experiences People Love
moore
138
23k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
4
370
Building Better People: How to give real-time feedback that sticks.
wjessup
364
19k
Fireside Chat
paigeccino
34
3k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
126
18k
Making the Leap to Tech Lead
cromwellryan
133
8.9k

Transcript

  1. Log Management An Introduction Lennart Koopmann Jordan Sissel

  2. What is a Log?

  3. time + data What is a Log?

  4. 37.5.55.31 - - [08/Apr/2014:15:31:30 -0400] "GET /images/web/2009/banner.png HTTP/1.1" 304 -

    "http://semicomplete.com/style2.css" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:28.0) Gecko/20100101 Firefox/28.0" What is a Log? time + data

  5. 120707 0:40:34 4 Connect root@localhost on 4 Query select @@version_comment

    limit 1 120707 0:40:45 4 Query select * from mysql.user What is a Log? time + data ?????? ???????

  6. Kinds of Logs

  7. Trace and Debug Kinds of Logs

  8. Accounting Kinds of Logs

  9. Transaction Kinds of Logs

  10. Problems

  11. Difficult to Access Problems

  12. Too Many Logs Problems Difficult to Access

  13. Too Many Servers Problems Difficult to Access

  14. No Permissions :( Problems Difficult to Access

  15. Difficult to Consume Problems

  16. Unstructured Problems Difficult to Consume

  17. Requires Expertise Problems Difficult to Consume

  18. Requires Maintenance Problems

  19. Configuration Problems Requires Maintenance

  20. Log Retention Problems Requires Maintenance

  21. Bad Tooling Problems

  22. grep, ssh, awk Problems Bad Tooling

  23. Life of a Log

  24. Life of a Log Record Transport Search & Analyze Archive

    Delete

  25. Sources of Logs

  26. Vendor Hardware Sources of Logs Routers, VPNs, Printers, Phones, AWS

    CloudTrail, etc

  27. Vendor Software Sources of Logs Nginx, Wordpress, Jira

  28. In-house Software Sources of Logs Your company controls it

  29. Solutions (Open Source!)

  30. Solutions Logstash from Elasticsearch Graylog2 from Torch