Upgrade to Pro — share decks privately, control downloads, hide ads and more …

How to scale a Logging Infrastructure

Avatar for Paul Stack Paul Stack
June 03, 2015
Technology
0
170

How to scale a Logging Infrastructure

Logging infrastructure using ELK + Kafka
Avatar for Paul Stack

Paul Stack

June 03, 2015
Tweet

More Decks by Paul Stack

See All by Paul Stack
Infrastructure as Software
Avatar for Paul Stack stack72
0
65
Mirror, Mirror on the way, what is the vainest metric of them all?
Avatar for Paul Stack stack72
1
2.3k
Continuously Delivering Infrastructure to the Cloud
Avatar for Paul Stack stack72
0
180
DevOops 2016
Avatar for Paul Stack stack72
0
120
The Quest for Infrastructure Management 2.0
Avatar for Paul Stack stack72
0
140
The Biggest Trick Consultants Ever Pulled was Telling The World Continuous Delivery is Easy
Avatar for Paul Stack stack72
1
110
The Transition from Product to Infrastructure
Avatar for Paul Stack stack72
0
60
Continuous Delivery - the missing parts
Avatar for Paul Stack stack72
0
940
Windows: Having its ass kicked by puppet and powershell
Avatar for Paul Stack stack72
0
120

Other Decks in Technology

See All in Technology
Dynamic Reteaming And Self Organization
Avatar for Miho Nagase miholovesq
3
740
MySQL Indexes and Histograms – How they really speed up your queries
Avatar for lefred lefred
0
150
2025-04-24 "Manga AI Understanding & Localization" Furukawa Arata (CyberAgent, Inc)
Avatar for Arata Furukawa ornew
2
330
ペアーズにおける評価ドリブンな AI Agent 開発のご紹介
Avatar for fukubaka0825 fukubaka0825
8
2.2k
2025年8月から始まるAWS Lambda INITフェーズ課金/AWS Lambda INIT phase billing changes
Avatar for quiver quiver
0
310
勝手に!深堀り!Cloud Run worker pools / Deep dive Cloud Run worker pools
Avatar for iselegant iselegant
4
640
genspark_presentation.pdf
Avatar for h.uriu haruki_uiru
0
170
続・やっぱり余白が大切だった話
Avatar for KAKEHASHI kakehashi
PRO
2
170
Running JavaScript within Ruby
Avatar for Kengo Hamasaki hmsk
4
440
より良い開発者体験を実現するために~開発初心者が感じた生成AIの可能性~
Avatar for モブエンジニア masakiokuda
0
230
ドキュメント管理の理想と現実
Avatar for Ohara Kazuhiro kazuhe
3
320
Oracle Base Database Service 技術詳細
Avatar for oracle4engineer oracle4engineer
PRO
7
63k

Featured

See All Featured
Being A Developer After 40
Avatar for Adrian Kosmaczewski akosma
91
590k
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
299
50k
Navigating Team Friction
Avatar for Lara Hogan lara
185
15k
jQuery: Nuts, Bolts and Bling
Avatar for Doug Neiner dougneiner
63
7.7k
Bash Introduction
Avatar for André Augusto Costa Santos 62gerente
612
210k
Site-Speed That Sticks
Avatar for Harry Roberts csswizardry
6
530
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
38
1.7k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
85
4.7k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
Avatar for Stéphanie Walter stephaniewalter
280
13k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
137
33k
Designing Dashboards & Data Visualisations in Web Apps
Avatar for Des Traynor destraynor
231
53k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
23
2.7k

Transcript

  1. How do you scale a logging infrastructure to accept a

    billion messages a day? Paul Stack http://twitter.com/stack72 mail: paul@paulstack.co.uk

  2. About Me Infrastructure Engineer for a cool startup :) Reformed

    ASP.NET / C# Developer DevOps Extremist Conference Junkie

  3. Background Project was to replace the legacy ‘logging solution’

  4. Iteration 0: A Developer created a single box with the

    ELK all in 1 jar

  5. Time to make it production ready now

  6. None

  7. Iteration 1: Using Redis as the input mechanism for LogStash

  8. None
  9. None

  10. Enter Apache Kafka

  11. “Kafka is a distributed publish- subscribe messaging system that is

    designed to be fast, scalable, and durable” Source: Cloudera Blog

  12. Introduction to Kafka • Kafka is made up of ‘topics’,

    ‘producers’, ‘consumers’ and ‘brokers’ • Communication is via TCP • Backed by Zookeeper

  13. Kafka Topics Source: http://kafka.apache.org/documentation.html

  14. Kafka Producers • Producers are responsible to chose what topic

    to publish data to • The producer is responsible for choosing a partition to write to • Can be handled round robin or partition functions

  15. Kafka Consumers • Consumption can be done via: • queuing

    • pub-sub

  16. Kafka Consumers • Kafka consumer group • Strong ordering

  17. Kafka Consumers • Strong ordering

  18. https://github.com/opentable/puppet-exhibitor

  19. None

  20. Iteration 2 Introduction of Kafka

  21. None
  22. None

  23. Iteration 3 Further ‘Improvements’ to the cluster layout

  24. None

  25. The Numbers • Logs kept in ES for 30 days

    then archived • 12 billion documents active in ES • ES space was about 25 - 30TB in EBS volumes • Average Doc Size ~ 1.2KB • V-Day 2015: ~750M docs collected without failure

  26. What about metrics and monitoring?

  27. Monitoring - Nagios • Alerts on • ES Cluster •

    zK and Kafka Nodes • Logstash / Redis nodes
  28. None

  29. https://github.com/stack72/nagios-elasticsearch

  30. Metrics - Kafka Offset Monitor

  31. https://github.com/opentable/KafkaOffsetMonitor

  32. Metrics - ElasticSearch

  33. None
  34. None
  35. None

  36. Visibility Rocks!

  37. None

  38. So what would I do differently?

  39. Questions?

  40. Paul Stack @stack72