Upgrade to Pro — share decks privately, control downloads, hide ads and more …

データルーター?Vector/Getting Started with Vector

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for watawuwu watawuwu
August 07, 2019
Technology
1.1k
6

データルーター?Vector/Getting Started with Vector

Avatar for watawuwu

watawuwu

August 07, 2019

More Decks by watawuwu

See All by watawuwu
Prometheusでデータの水平分割を試みる/Let's split prometheus data
Avatar for watawuwu watawuwu
0
11k
KubernetesでWebアプリケーションをリリースするまでに必要なものは/What you need with Kubernetes
Avatar for watawuwu watawuwu
10
1.9k
Thanosってどうですか?/Getting Started with Thanos
Avatar for watawuwu watawuwu
1
1.1k
Argo入門/Getting Started with Argo
Avatar for watawuwu watawuwu
0
1.1k
Concourse入門 / Concourse Getting Started
Avatar for watawuwu watawuwu
3
2.3k

Other Decks in Technology

See All in Technology
中期計画、2回作ってみた ~業務委託と正社員、両方の視点から~
Avatar for 株式会社出前館 demaecan
1
750
【NRUG vol.18】なぜ多くのオブザーバビリティ導入は失敗するのか
Avatar for NRUG member nrug_member
0
120
20260619 私の日常業務での生成 AI 活用
Avatar for Masaru Ogura masaruogura
1
200
FDE という解 ― 暗黙知と明示知をつなぐ、伴走型エンジニアリング ―
Avatar for 太田 博三 otanet
0
150
ルールやカスタム機能、どう活かす?ハンズオンで体感するIBM Bobの出力コントロール
Avatar for mu (Mizuho Uehara) muehara
1
150
Oracle AI Database@Google Cloud:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
6
1.5k
作って終わりにしない タイミーのセマンティックレイヤー育成の現在地
Avatar for chanyou0311 chanyou0311
4
2.3k
Kiroで書いた 設計書 が AI レビューの 採点基準 になる
Avatar for shinji ezaki ezaki
0
110
フィジカル版Github Onshapeの紹介
Avatar for shiba_8ro shiba_8ro
0
180
失敗を資産に変えるClaude Code
Avatar for Shinya Saita shinyasaita
0
640
AIエージェントが名古屋の猛暑からあなたを守る
Avatar for コロッケそば happysamurai294
0
110
"何を作るか"を任される エンジニアは、どう育つのか
Avatar for ofuji-works yutaokafuji
1
680

Featured

See All Featured
The World Runs on Bad Software
Avatar for Brandon Keepers bkeepers
PRO
72
12k
We Are The Robots
Avatar for Honza Javorek honzajavorek
0
250
AI Search: Implications for SEO and How to Move Forward - #ShenzhenSEOConference
Avatar for Aleyda Solis aleyda
1
1.3k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
10
1.2k
Are puppies a ranking factor?
Avatar for Jono Alderson jonoalderson
1
3.5k
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
51
52k
Accessibility Awareness
Avatar for Sarah Abderemane sabderemane
1
140
Skip the Path - Find Your Career Trail
Avatar for Mark Kilby mkilby
1
150
How Fast Is Fast Enough? [PerfNow 2025]
Avatar for Tammy Everts tammyeverts
3
610
職位にかかわらず全員がリーダーシップを発揮するチーム作り / Building a team where everyone can demonstrate leadership regardless of position
Avatar for MADOX madoxten
62
54k
The Impact of AI in SEO - AI Overviews June 2024 Edition
Avatar for Aleyda Solis aleyda
5
1.1k
Build The Right Thing And Hit Your Dates
Avatar for Maggie C. maggiecrowley
39
3.2k

Transcript

  1. Getting Started with Vector Cloud native meetup tokyo #9 This

    document includes the work that is distributed in the Apache License 2.0

  2. profile: name: Wataru Matsui org: [ Z Lab, 3bi.tech ]

    twitter: @watawuwu

  3. • What’s Vector? • Usage • VS ... • Roadmap

    • Conclusions Agenda

  4. What’s Vector? https://vector.dev

  5. Logs, Metrics & Events Router Is like Fluentd?

  6. Developed by Timber.io https://timber.io

  7. Feature • Log, Metrics, or Events • Agent Or Service

    • Fast • Correct • Clear Guarantee • Vendor Neutral • Easy To Deploy • Hot Reload

  8. • Fluentd • Fluent Bit • Filebeat • Logstash Similar

    tool

  9.  Summary ©timber.io

  10. ©timber.io

  11. Topologies: Distributed ©timber.io

  12. Topologies: Centralized ©timber.io

  13. Topologies: Stream-Based ©timber.io

  14. How to use Vector

  15. Source types • file • statsd • syslog • tcp

    • vector • stdin(debug)

  16. [sources.my_file_source_id]
 
 # REQUIRED - General 
 type = "file"

    # must be: "file"
 include = ["/var/log/nginx/*.log"]
 exclude = [""]
 Source config

  17. [sources.my_tcp_source_id]
 
 # REQUIRED - General 
 type = "tcp"

    # must be: "tcp"
 address = ["0.0.0.0:9000"]
 Source config

  18. Sink types • aws ◦ cloudwatch_logs ◦ kinesis_streams ◦ s3

    • elasticsearch • http • kafka • prometheus • splunk_hec • tcp • vector • console • blackhole(/dev/null)

  19. [sinks.my_tcp_sink_id]
 
 # REQUIRED - General 
 type = "tcp"

    # must be: "tcp"
 input = ["my_tcp_source_id"]
 address = ["92.12.333.224:5000"]
 
 # OPTIONAL - Requests 
 encoding = "json" # default, enum: "json", "text" 
 
 Sinks config

  20. [sinks.my_s3_sink_id]
 
 # REQUIRED - General 
 type = "s3"

    # must be: "s3"
 input = ["my_file_source_id"]
 bucket = "my-bucket"
 region = "ap-northeast-1"
 encoding = "ndjson" # enum: "ndjson", "text" 
 
 # OPTIONAL - Requests
 key_prefix = "date=%F/" # default Sinks config

  21. [sinks.my_prometheus_sink_id]
 
 # REQUIRED - General 
 type = "prometheus"

    # must be: "prometheus" 
 input = ["my_log2metrics_source_id"]
 address = "0.0.0.0:9598" Sinks config

  22. Transform types • Fileld ◦ add_fields ◦ remove_filed ◦ filed_filter

    • Paser ◦ grok_parser ◦ json_parser ◦ regex_parser ◦ tokenizer • log_to_metric • sampler • lua • vector • console • blackhole(/dev/null)

  23. [transforms.my_regex_trans_id]
 
 # REQUIRED - General
 type = "regex_parser" #

    must be: "regex_parser" 
 inputs = ["my_file_source_id"]
 regex = "^(?P<host>[\\w\\.]+) - (?P<user>[\\w]+) (?P<bytes_in>[\\d]+) \\[(?P<timestamp>.*)\\] \"(? P<method>[\\w]+) (?P<path>.*)\" (?P<status>[\\d]+) (?P<bytes_out>[\\d]+)$"
 
 # OPTIONAL - Types
 [transforms.my_regex_trans_id.types]
 status = "int"
 method = "string"
 bytes_in = "int"
 bytes_out = "int" Transform config

  24. [transforms.my_prometheus_trans_id]
 
 # REQUIRED - General
 type = "log_to_metric" #

    must be: "log_to_metric"
 inputs = ["my_file_source_id"]
 
 # OPTIONAL - Types
 [[transforms.my_regex_trans_id.metrics]]
 type = "counter" # enum: "counter", "gauge"
 field = "duration" 
 increment_by_value = false
 name = "duration_total"
 labels = {host = "${HOSTNAME}", region = "us-east-1"} 
 
 Transform config

  25. [sources.logs] 
 type = 'file'
 include = ['/var/log/*.log']
 
 [transforms.tokenizer]

    
 inputs = ['logs']
 type = 'tokenizer'
 field_names = ["timestamp", "level", "message"]
 
 [transforms.sampler] 
 inputs = ['tokenizer']
 type = 'sampler'
 hash_field = 'request_id'
 rate = 10
 [sinks.search] 
 inputs = ['sampler']
 type = 'elasticsearch'
 host = '123.123.123.123:5000'
 
 [sinks.backup] 
 inputs = ['tokenizer']
 type = 's3'
 region = 'ap-northeast-1'
 bucket = 'log-backup'
 key_prefix = 'date=%F'
 Vector config

  26. VS

  27. 
 Vector
 FluentBit
 FluentD
 File to TCP
 76.7MiB/s
 35MiB/s
 26.1MiB/s


    Regex Parsing
 13.2MiB/s
 20.5MiB/s
 2.6MiB/s
 TCP to HTTP
 26.7MiB/s
 19.6MiB/s
 <1MiB/s
 Performance report by Timber.io

  28. 
 Vector
 FluentBit
 FluentD
 Memory
 188.1MiB
 370MiB
 890MiB
 CPU
 1.51

    1m avg
 0.56 1m avg
 0.57 1m avg
 Performance report by Timber.io

  29. Don't trust the reports. Measure, Measure, Measure!

  30. Measure using GKE • Kubernetes: v1.13.7 • Node x4 ◦

    4 CPU ◦ 3.6 GB Memory ◦ 100 GB Storage(Standard) • Manifests ◦ https://github.com/watawuwu/vector-test

  31. Memory Usage Mem usage is low Why fluent-bit uses memory?

    Vector
 26 MiB/s
 Fluent Bit
 1.091 GiB/s
 Fluentd
 92 MiB/s


  32. CPU Usage CPU usage is high Vector
 1.84 core
 Fluent

    Bit
 0.26 core
 Fluentd
 1.25 core


  33. IO Throughput Vector Fluentd Fluentd Bit Throughput is low Error

    in the test method? Vector
 9.39 MiB/s
 Fluent Bit
 8.26 MiB/s
 Fluentd
 13.64 MiB/s


  34. Roadmap

  35. Roadmap • v0.4 Schemas(current) • v0.5 Stream Consumers • v0.6

    Columnar Writing • v0.7 CLI • v0.8 Wire Level Tailing • v1.0 Stable => 2019/12 Release!!

  36. Conclusions

  37. ADAPT
 TRIAL
 ASSESS
 HOLD
 watawuwu’s TECH RADAR

  38. Thanks! Kubernetes, Cloud Native zlab.co.jp