Logs Data Platform & SpringBoot Project

JohannR3 2021-06-19 07:33:51 UTC #1

Hello,

I have a cluster in public cloud with different pods. One pod contains a SpringBoot Java project.

I set configuration for Log Data platform to follow this doc https://docs.ovh.com/fr/logs-data-platform/quick-start/

But no data in Graylog.

Do I need to add the token X-OVH-TOKEN for each log ? How ?

Thanks

Johann

BabacarD 2021-06-22 11:00:39 UTC #2

Hello,
yes you are right, each log must have the X-OVH-TOKEN field. How do you send your logs to Graylog, do you use a logging framework from your application or you forward the logs of your pods ?

JohannR3 2021-06-22 12:11:09 UTC #3

Hello,
Thanks for your answer.
I use logback and logstash (SpringBoot).
I don't use specific appender, the log is write in the pod directly.
JOhann

BabacarD 2021-06-22 15:58:39 UTC #4

Sorry for the late answer
If you can configure Logstash you can set up a Elasticsearch output to send your logs to a special index as detailed here : https://docs.ovh.com/fr/logs-data-platform/ldp-index/

You will need also to add your token with the mutate filter:
https://www.elastic.co/guide/en/logstash/current/plugins-filters-mutate.html#plugins-filters-mutate-add_field
the output configuration for Logstash is here: https://www.elastic.co/guide/en/logstash/current/plugins-outputs-elasticsearch.html. Just use the index username, password

Alternatively, you can also use fluent-bit to automatically send the logs of your pods to Logs Data Platform as described here : https://docs.ovh.com/fr/logs-data-platform/kubernetes-fluent-bit/
This documentation also details how to add the Token of your stream

If you need any help in deploying these two solutions, don't hesitate to ask here. We will gladly help you.

JohannR3 2021-06-27 15:22:25 UTC #5

Hello,
Sorry for my late answer.
I follow the instruction for fluent-bit, and it works fine ! Thank you !
Johann

JohannR3 2021-06-27 15:43:14 UTC #6

In addition, be careful to do not send all logs from the cluster as kube-system, registry, etc...
In 1 hour, I collect 1.5 GB of logs.
To do it, update the conf in Fluent Bit ConfigMap, an example :

input-kubernetes.conf: |
    [INPUT]
        Name              tail
        Tag               kube.*
        Path              /var/log/containers/*deployment_name*.log
        Parser            docker
        DB                /var/log/flb_kube.db
        Mem_Buf_Limit     5MB
        Skip_Long_Lines   On
        Refresh_Interval  10

But a question : how delete the useless collect data in Data Stream ?

BabacarD 2021-06-28 16:52:34 UTC #7

Hello,

Glad to know you succeeded in configuring fluent-bit.

Unfortunately, logs in our platform are immutable so you cannot delete them from your stream but, if you want, you can create a new stream (since streams are free), send the logs of your final configuration to this stream and delete the former one.

JohannR3 2021-06-28 18:36:07 UTC #8

Thanks for your help :)

Propulsé par Discourse, le rendu est meilleur avec le JavaScript activé

OVHcloud Community

Bienvenue sur votre espace communautaire. Posez des questions, recherchez des informations, publiez du contenu et interagissez avec d’autres membres d'OVHcloud Community.