Miguel Pérez Colino, profile picture
Uploaded byMiguel Pérez Colino
425 views

Red Hat Summit 2017 - LT107508 - Better Managing your Red Hat footprint with log aggregation

The document discusses log aggregation strategies to efficiently manage Red Hat's cloud deployments, emphasizing the need for scalable solutions in multi-tenant environments. It outlines challenges faced in data processing and the proposed architecture using EFK (Elasticsearch, Fluentd, Kibana) for real-time analytics and monitoring. Additionally, it presents a common data model to enhance interoperability and data consumption across different Red Hat products.

Embed presentation

Downloaded 13 times
LOG AGGREGATION To better manage your Red Hat footprint Miguel Pérez Colino Strategic Design Team - ISBU 2017-05-03 @mmmmmmpc
Agenda Managing your Red Hat footprint with Log Aggregation ● The Situation ● The Challenge ● The Solution
THE SITUATION
Cloud Deployments They do really scale ... https://www.cncf.io/blog/2016/08/23/deploying-1000-nodes-of-openshift-on-the-cncf-cluster-part-1/ ● Higher scalability ● More workloads per physical machine (multi-tenant) ● Network and Storage also Software Defined ● Containers and Microservices providing more granularity
Cloud Deployments Act as one single thing … … and need to be managed and operated as one Source: https://commons.wikimedia.org/wiki/File:Auklet_flock_Shumagins_1986.jpg
THE CHALLENGE
Data (What) Data + Information flow in Log Aggregation ProcessIngest StoreCollect Query ViewGenerate Derived from: http://www.dataintensive.info/
Personas (Who) That can use Log Aggregation Log Aggregation Monitoring Provides Events, Consumes Logs Cloud Ops Root Cause Analysis Developer App Analysis & Debug Security Engineer Sec Analysis, Audits User / Marketing Access to stats Service DesignerIT Manager Access to aggregated data, i.e. SLA, usage
Personas (Motivation) That need Log Aggregation Cloud Ops (Apps) “I want to proactively know about active or potential degradation of service” Cloud Ops (OpenStack) “User reports that their VM request failed and returned error” Developer (OpenShift) “My recent commit resulted in Jenkins test failure” “Application (multi-tiered) launched from CloudForms returns error” Cloud Suite User
Situational Awareness (Why) Or the need of it! Source: https://en.wikipedia.org/wiki/Situation_awareness
THE SOLUTION
Architecture Proposed General Architecture Real Time Analytics and Response Host Bus N N N Archive Data Store General Visualization M C M C Storage Legend M C N Message Client Normalizer C C C Collector Slide Credit: Tushar Katarki [@tkatarki]
Implementation Introduction to EFK KibanaElasticSearchLog Source Fluentd User Interface for: ● Search ● Graph ● Dashboard Index and store data and metadata making search fast and reliable ● Parsing ● Filtering ● Enriching ● Deleting ● Output Buffering ● TCP/UDP ● HTTP ● File: Text ● Stdout: CSV, JSON, MessagePack ● syslog/journal Slide Credit: Tushar Katarki [@tkatarki]
Current Status Being delivered and supported OpenShift Container Platform 3.5 ● Full EFK stack provided as containers OpenStack Platform 10 ● Fluentd as log collector Red Hat Virtualization ● Coming Soon! Log files Journal Fluentd Kuberentes Services Syslog Master Nodes Elastic search Kibana ... Application Nodes Log files Journal Fluentd App inside container Syslog Infra Nodes Elastic search Kibana host logs App inside container Elastic search Curator Multi-Tenant Access Diagram Credit: Tushar Katarki [@tkatarki]
BEYOND ...
Common Data Model To ensure integration and interoperability What Is It? ● A Data Model for Logs (and other data) to identify and tag data (i.e. log fields) Why? ● Alignment/Correlation with different RH products ● Improved maintainability of Data ● Better presentation/data consumption ● Enables 3rd party ecosystem ● Facilitates deep learning analysis of data Ingestion pipeline Consumption pipeline Indexing and Storage
Common Data Model Example ... Data extracted: ● Container name ● Pod name ● Namespace name ● Docker container ID K8S data queried: ● Pod UID ● Pod labels ● Pod host ● Namespace UID. All merged into output log in JSON Format Images Credit: Anton Sherkhonov [@peatz] CDM A → 1 B → 2 C → 3
User Experience Prototyping and validating dashboards for users Slide Credits: Peter Portante & Vince Conzola
Exploring different approaches Prototyping with alternative toolsets with partners Slide Credits: Luca Rosellini (Keedio)
ACTION!
How are you doing it? Please, provide your feedback ... http://bit.ly/log-aggregation
THANK YOU plus.google.com/+RedHat linkedin.com/company/red-hat youtube.com/user/RedHatVideos facebook.com/redhatinc twitter.com/RedHatNews
Red Hat Summit 2017 - LT107508 - Better Managing your Red Hat footprint with log aggregation

More Related Content

PPTX
SC4 Hangout - Luigi Selmi, Transport pilot architecture
byBigData_Europe
 
PPTX
Intro To Graph Databases - Oxana Goriuc
byFraugster
 
PPTX
BDE SC4 Hangout - Hajira Jabeen, general architecture
byBigData_Europe
 
PDF
Distributed Timeseries Database In Go (gophercon India 17)
byMatthew Campbell
 
PDF
Lodstats: The Data Web Census Dataset. Kobe, Japan, 2016
byIvan Ermilov
 
PDF
Atmosphere 2018: Wojciech Krysmann- INFRA AS CODE - TERRAFORM DEEP DIVE AND B...
byPROIDEA
 
PDF
Cassandra meetup slides - Oct 15 Santa Monica Coloft
byJon Haddad
 
PDF
Presto Summit 2018 - 09 - Netflix Iceberg
bykbajda
 
SC4 Hangout - Luigi Selmi, Transport pilot architecture
byBigData_Europe
 
Intro To Graph Databases - Oxana Goriuc
byFraugster
 
BDE SC4 Hangout - Hajira Jabeen, general architecture
byBigData_Europe
 
Distributed Timeseries Database In Go (gophercon India 17)
byMatthew Campbell
 
Lodstats: The Data Web Census Dataset. Kobe, Japan, 2016
byIvan Ermilov
 
Atmosphere 2018: Wojciech Krysmann- INFRA AS CODE - TERRAFORM DEEP DIVE AND B...
byPROIDEA
 
Cassandra meetup slides - Oct 15 Santa Monica Coloft
byJon Haddad
 
Presto Summit 2018 - 09 - Netflix Iceberg
bykbajda
 

What's hot

PDF
Lightweight Collection and Storage of Software Repository Data with DataRover
byChristoph Matthies
 
PPTX
Workshop introduction-to-rxjs
byKristinaBistrickiene1
 
PPTX
MongoDB IoT City Tour LONDON: Managing the Database Complexity, by Arthur Vie...
byMongoDB
 
PDF
Geobricks Framework
byGuido Barbaglia
 
PDF
Introducing MagnetoDB, a key-value storage sevice for OpenStack
byMirantis
 
PDF
Monitoring your shiny new docker environment
bySamuel Vandamme
 
PPTX
Intro elasticsearch taswarbhatti
byTaswar Bhatti
 
PDF
IOT Paris Seminar 2015 - Storage Challenges in IOT
byMongoDB
 
PDF
Approaches for duplicating Kubernetes Storage with Gluster
bymountpoint.io
 
PDF
GIS on Rails by Oleksandr Kychun
byPivorak MeetUp
 
PPTX
BDE_SC4_WS3_6_Luigi Selmi - Pilot SC4
byBigData_Europe
 
PDF
Iceberg: a fast table format for S3
byDataWorks Summit
 
PPTX
ScienceBase and CINERGI - thoughts
bySky Bristol
 
PDF
DBpedia Viewer - LDOW 2014
byDimitris Kontokostas
 
PDF
Mobicents Summit 2012 - Alexandre Mendonca - Mobicents jDiameter
bytelestax
 
PDF
Big data @ Hootsuite analtyics
byClaudiu Coman
 
PDF
OpenNebulaConf2017EU: Enabling Dev and Infra teams by Lodewijk De Schuyter,De...
byOpenNebula Project
 
PPT
Semantic Technology In Oracle Database 12c
byMartin Toshev
 
PDF
Netflix Data Benchmark @ HPTS 2017
byIoannis Papapanagiotou
 
PDF
The Dark Side Of Go -- Go runtime related problems in TiDB in production
byPingCAP
 
Lightweight Collection and Storage of Software Repository Data with DataRover
byChristoph Matthies
 
Workshop introduction-to-rxjs
byKristinaBistrickiene1
 
MongoDB IoT City Tour LONDON: Managing the Database Complexity, by Arthur Vie...
byMongoDB
 
Geobricks Framework
byGuido Barbaglia
 
Introducing MagnetoDB, a key-value storage sevice for OpenStack
byMirantis
 
Monitoring your shiny new docker environment
bySamuel Vandamme
 
Intro elasticsearch taswarbhatti
byTaswar Bhatti
 
IOT Paris Seminar 2015 - Storage Challenges in IOT
byMongoDB
 
Approaches for duplicating Kubernetes Storage with Gluster
bymountpoint.io
 
GIS on Rails by Oleksandr Kychun
byPivorak MeetUp
 
BDE_SC4_WS3_6_Luigi Selmi - Pilot SC4
byBigData_Europe
 
Iceberg: a fast table format for S3
byDataWorks Summit
 
ScienceBase and CINERGI - thoughts
bySky Bristol
 
DBpedia Viewer - LDOW 2014
byDimitris Kontokostas
 
Mobicents Summit 2012 - Alexandre Mendonca - Mobicents jDiameter
bytelestax
 
Big data @ Hootsuite analtyics
byClaudiu Coman
 
OpenNebulaConf2017EU: Enabling Dev and Infra teams by Lodewijk De Schuyter,De...
byOpenNebula Project
 
Semantic Technology In Oracle Database 12c
byMartin Toshev
 
Netflix Data Benchmark @ HPTS 2017
byIoannis Papapanagiotou
 
The Dark Side Of Go -- Go runtime related problems in TiDB in production
byPingCAP
 

Similar to Red Hat Summit 2017 - LT107508 - Better Managing your Red Hat footprint with log aggregation

PDF
Docker Logging and analysing with Elastic Stack
byJakub Hajek
 
PDF
Docker Logging and analysing with Elastic Stack - Jakub Hajek
byPROIDEA
 
PDF
Logs/Metrics Gathering With OpenShift EFK Stack
byJosef Karásek
 
PDF
Collabnix Online Webinar: Integrated Log Analytics & Monitoring using Docker ...
byAjeet Singh Raina
 
PDF
Containers and Logging
byEduardo Silva Pereira
 
PDF
Logging for Containers
byEduardo Silva Pereira
 
PDF
Atmosphere 2014: Centralized log management based on Logstash and Kibana - ca...
byPROIDEA
 
ODP
Logging presentation
byJatan Malde
 
PDF
Cloud operations with streaming analytics using big data tools
byMiguel Pérez Colino
 
PDF
The Patterns of Distributed Logging and Containers
bySATOSHI TAGOMORI
 
PPTX
Cloud Operations with Streaming Analytics using Apache NiFi and Apache Flink
byDataWorks Summit
 
PDF
CEPH & OPENSTACK - Red Hat's Winning Combination for Enterprise Clouds
byRed Hat India Pvt. Ltd.
 
PDF
Fluentd at Bay Area Kubernetes Meetup
bySadayuki Furuhashi
 
PDF
Distributed Logging Architecture in the Container Era
byGlenn Davis
 
PDF
Distributed Logging Architecture in Container Era
bySATOSHI TAGOMORI
 
PDF
Improve Monitoring and Observability for Kubernetes with OSS tools
byNilesh Gule
 
PDF
Log Management: AtlSecCon2015
bycameronevans
 
PPTX
Centralized log-management-with-elastic-stack
byRich Lee
 
PDF
OpenShift Meetup - Summit 2021 (Part 1)
byConSol Consulting & Solutions Software GmbH
 
PDF
Red Hat Storage 2014 - Product(s) Overview
byMarcel Hergaarden
 
Docker Logging and analysing with Elastic Stack
byJakub Hajek
 
Docker Logging and analysing with Elastic Stack - Jakub Hajek
byPROIDEA
 
Logs/Metrics Gathering With OpenShift EFK Stack
byJosef Karásek
 
Collabnix Online Webinar: Integrated Log Analytics & Monitoring using Docker ...
byAjeet Singh Raina
 
Containers and Logging
byEduardo Silva Pereira
 
Logging for Containers
byEduardo Silva Pereira
 
Atmosphere 2014: Centralized log management based on Logstash and Kibana - ca...
byPROIDEA
 
Logging presentation
byJatan Malde
 
Cloud operations with streaming analytics using big data tools
byMiguel Pérez Colino
 
The Patterns of Distributed Logging and Containers
bySATOSHI TAGOMORI
 
Cloud Operations with Streaming Analytics using Apache NiFi and Apache Flink
byDataWorks Summit
 
CEPH & OPENSTACK - Red Hat's Winning Combination for Enterprise Clouds
byRed Hat India Pvt. Ltd.
 
Fluentd at Bay Area Kubernetes Meetup
bySadayuki Furuhashi
 
Distributed Logging Architecture in the Container Era
byGlenn Davis
 
Distributed Logging Architecture in Container Era
bySATOSHI TAGOMORI
 
Improve Monitoring and Observability for Kubernetes with OSS tools
byNilesh Gule
 
Log Management: AtlSecCon2015
bycameronevans
 
Centralized log-management-with-elastic-stack
byRich Lee
 
OpenShift Meetup - Summit 2021 (Part 1)
byConSol Consulting & Solutions Software GmbH
 
Red Hat Storage 2014 - Product(s) Overview
byMarcel Hergaarden
 

Recently uploaded

PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PPTX
Gemini vs ChatGPT : Comparing Top AI Models
byDigicarrom
 
PDF
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PDF
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PPTX
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PDF
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
PPTX
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
PPTX
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
PPTX
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PPTX
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
PDF
Exam Prep Plan Overview: Amazon Web Services (AWS) Certified
byVICTOR MAESTRE RAMIREZ
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Gemini vs ChatGPT : Comparing Top AI Models
byDigicarrom
 
Fundamentals and Frontiers of Post Quantum Cryptography
byGokul Alex
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]
byUiPathCommunity
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Top _HR Technology Trends _for 2026_.pptx
byAutomationEdge Technologies
 
Exam Prep Plan Overview: Amazon Web Services (AWS) Certified
byVICTOR MAESTRE RAMIREZ
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 

Red Hat Summit 2017 - LT107508 - Better Managing your Red Hat footprint with log aggregation

  • 1.
    LOG AGGREGATION To bettermanage your Red Hat footprint Miguel Pérez Colino Strategic Design Team - ISBU 2017-05-03 @mmmmmmpc
  • 2.
    Agenda Managing your RedHat footprint with Log Aggregation ● The Situation ● The Challenge ● The Solution
  • 3.
  • 4.
    Cloud Deployments They doreally scale ... https://www.cncf.io/blog/2016/08/23/deploying-1000-nodes-of-openshift-on-the-cncf-cluster-part-1/ ● Higher scalability ● More workloads per physical machine (multi-tenant) ● Network and Storage also Software Defined ● Containers and Microservices providing more granularity
  • 5.
    Cloud Deployments Act asone single thing … … and need to be managed and operated as one Source: https://commons.wikimedia.org/wiki/File:Auklet_flock_Shumagins_1986.jpg
  • 6.
  • 7.
    Data (What) Data +Information flow in Log Aggregation ProcessIngest StoreCollect Query ViewGenerate Derived from: http://www.dataintensive.info/
  • 8.
    Personas (Who) That canuse Log Aggregation Log Aggregation Monitoring Provides Events, Consumes Logs Cloud Ops Root Cause Analysis Developer App Analysis & Debug Security Engineer Sec Analysis, Audits User / Marketing Access to stats Service DesignerIT Manager Access to aggregated data, i.e. SLA, usage
  • 9.
    Personas (Motivation) That needLog Aggregation Cloud Ops (Apps) “I want to proactively know about active or potential degradation of service” Cloud Ops (OpenStack) “User reports that their VM request failed and returned error” Developer (OpenShift) “My recent commit resulted in Jenkins test failure” “Application (multi-tiered) launched from CloudForms returns error” Cloud Suite User
  • 10.
    Situational Awareness (Why) Orthe need of it! Source: https://en.wikipedia.org/wiki/Situation_awareness
  • 11.
  • 12.
    Architecture Proposed General Architecture RealTime Analytics and Response Host Bus N N N Archive Data Store General Visualization M C M C Storage Legend M C N Message Client Normalizer C C C Collector Slide Credit: Tushar Katarki [@tkatarki]
  • 13.
    Implementation Introduction to EFK KibanaElasticSearchLogSource Fluentd User Interface for: ● Search ● Graph ● Dashboard Index and store data and metadata making search fast and reliable ● Parsing ● Filtering ● Enriching ● Deleting ● Output Buffering ● TCP/UDP ● HTTP ● File: Text ● Stdout: CSV, JSON, MessagePack ● syslog/journal Slide Credit: Tushar Katarki [@tkatarki]
  • 14.
    Current Status Being deliveredand supported OpenShift Container Platform 3.5 ● Full EFK stack provided as containers OpenStack Platform 10 ● Fluentd as log collector Red Hat Virtualization ● Coming Soon! Log files Journal Fluentd Kuberentes Services Syslog Master Nodes Elastic search Kibana ... Application Nodes Log files Journal Fluentd App inside container Syslog Infra Nodes Elastic search Kibana host logs App inside container Elastic search Curator Multi-Tenant Access Diagram Credit: Tushar Katarki [@tkatarki]
  • 15.
  • 16.
    Common Data Model Toensure integration and interoperability What Is It? ● A Data Model for Logs (and other data) to identify and tag data (i.e. log fields) Why? ● Alignment/Correlation with different RH products ● Improved maintainability of Data ● Better presentation/data consumption ● Enables 3rd party ecosystem ● Facilitates deep learning analysis of data Ingestion pipeline Consumption pipeline Indexing and Storage
  • 17.
    Common Data Model Example... Data extracted: ● Container name ● Pod name ● Namespace name ● Docker container ID K8S data queried: ● Pod UID ● Pod labels ● Pod host ● Namespace UID. All merged into output log in JSON Format Images Credit: Anton Sherkhonov [@peatz] CDM A → 1 B → 2 C → 3
  • 18.
    User Experience Prototyping andvalidating dashboards for users Slide Credits: Peter Portante & Vince Conzola
  • 19.
    Exploring different approaches Prototypingwith alternative toolsets with partners Slide Credits: Luca Rosellini (Keedio)
  • 20.
  • 21.
    How are youdoing it? Please, provide your feedback ... http://bit.ly/log-aggregation
  • 22.