Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Don't let your log go away
Search
Olivier Dolbeau
March 24, 2015
Programming
1
440
Don't let your log go away
Talk given at Paris Tech Talk MeetUp
Olivier Dolbeau
March 24, 2015
Tweet
Share
More Decks by Olivier Dolbeau
See All by Olivier Dolbeau
Throw new \Exception(); Oui, mais laquelle ?
odolbeau
0
80
Jane & Webby
odolbeau
0
310
Translating a monolingual application
odolbeau
2
460
DX: Developer eXperience
odolbeau
0
56
DX: Developer eXperience
odolbeau
0
450
EasyAdminBundle introduction
odolbeau
0
150
REX API Platform
odolbeau
0
1.2k
Features flags at BlaBlaCar
odolbeau
4
940
25+ million members in 22 countries, how to scale with Symfony2
odolbeau
1
430
Other Decks in Programming
See All in Programming
What’s New in Compose Multiplatform - A Live Tour (droidcon London 2024)
zsmb
1
470
Contemporary Test Cases
maaretp
0
140
Laravel や Symfony で手っ取り早く OpenAPI のドキュメントを作成する
azuki
2
120
Macとオーディオ再生 2024/11/02
yusukeito
0
370
[Do iOS '24] Ship your app on a Friday...and enjoy your weekend!
polpielladev
0
100
TypeScriptでライブラリとの依存を限定的にする方法
tutinoko
2
670
A Journey of Contribution and Collaboration in Open Source
ivargrimstad
0
910
Figma Dev Modeで変わる!Flutterの開発体験
watanave
0
110
ActiveSupport::Notifications supporting instrumentation of Rails apps with OpenTelemetry
ymtdzzz
1
230
「今のプロジェクトいろいろ大変なんですよ、app/services とかもあって……」/After Kaigi on Rails 2024 LT Night
junk0612
5
2.1k
C++でシェーダを書く
fadis
6
4.1k
最新TCAキャッチアップ
0si43
0
140
Featured
See All Featured
Embracing the Ebb and Flow
colly
84
4.5k
Automating Front-end Workflow
addyosmani
1366
200k
Fireside Chat
paigeccino
34
3k
jQuery: Nuts, Bolts and Bling
dougneiner
61
7.5k
How to Ace a Technical Interview
jacobian
276
23k
Reflections from 52 weeks, 52 projects
jeffersonlam
346
20k
Art, The Web, and Tiny UX
lynnandtonic
297
20k
Optimising Largest Contentful Paint
csswizardry
33
2.9k
Optimizing for Happiness
mojombo
376
70k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
38
1.8k
Building a Modern Day E-commerce SEO Strategy
aleyda
38
6.9k
Teambox: Starting and Learning
jrom
133
8.8k
Transcript
DON’T LET YOUR LOG GO AWAY @odolbeau 1
WHO AM I? Olivier Dolbeau @odolbeau Work at BlaBlaCar 2
Log 3
Which logs are we talking about? 4
access logs 5
syslog syslog 6
application logs 7
Access 8
SSH 9
Analyze 10
tail grep cat 11
This is specific to its access logs My roommate uses
this to colorise his access logs… 12
13
14
15
16
17
Inputs Filters Outputs 41 inputs • syslog • udp •
varnishlog • gelf • … 50 filters • date • geoip • i18n • urldecode • … 55 outputs • elasticsearch • redis • email • graphite • … And there are also some codecs 18
Kibana 19
20
ELK 21
22
syslog syslog 23
24
*.* @127.0.0.1:514;RSYSLOG_ForwardFormat 25
input { udp { port => 514 type => syslog
} } Logstash - Input 26
filter { if [type] == "syslog" { grok { match
=> [ "message", "<%{POSINT:syslog_pri}>% {TIMESTAMP_ISO8601:syslog_timestamp} %{SYSLOGHOST:syslog_hostname} % {DATA:syslog_program}(?:\[%{POSINT:syslog_pid}\])?: % {GREEDYDATA:syslog_message}" ] add_field => [ "received_at", "%{@timestamp}" ] add_field => [ "received_from", "%{host}" ] add_tag => [ "rsyslog" ] } } } Logstash - Filter 27
output { elasticsearch_http { host => “my_es.blablacar.com” port => 9200
index => "logstashv1-%{+YYYY.MM.dd}" manage_template => false } } Logstash - Output 28
29
syslog 30
31
32
None
odolbeau
zsmb
maaretp
azuki
yusukeito
polpielladev
tutinoko
ivargrimstad
watanave
ymtdzzz
junk0612
fadis
0si43
colly
addyosmani
paigeccino
dougneiner
jacobian
jeffersonlam
lynnandtonic
csswizardry
mojombo
bcantrill
aleyda
jrom
![filter { if [type] == "syslog" { grok { match](https://files.speakerdeck.com/presentations/3771812abf874a879ae6171e9fa4dade/slide_26.jpg){kind=link}
