Logs

This topic provides a detailed guide to the Logs view, where you can quickly get information about log volume, log sources and files, as well as access to dashboards with additional information. If you are drilling down into a specific server or log file, this is a great place to start. Alternatively, to access the full range of search tools click Search -> Search to access the Search view page.

The Logs view differs depending on whether you have a traditional sever setup, or Kubernetes.

Traditional Server Setups

(1) This chart shows total log volume for all of your servers over the last four hours. You can use it to look for spikes in volume.

(2) All servers generating log volume are listed here. If a particular server or cluster has not generated log volume in the past 24 hours, it will not appear on this list. Clicking on a specific server will take you to the Search view page, filtered on your selection.

(3) Logs received from each server are listed here. Clicking on a specific log file will take you to the Search view page, filtered on your selection.

(4) Additional information for each server can be obtained by selecting various dashboards. For example, the System dashboard contains system information such as CPU usage, disk usage, network bandwidth, and more. The Web Server dashboard contains information such as request rate, response bandwidth, response time, and more.

Kubernetes

(1) This chart shows total log volume for all of your clusters over the last four hours. You can use it to look for spikes in volume.

(2) Clusters generating log volume are listed here as section heads. If a particular cluster has not generated log volume in the past 24 hours, it will not appear on this page. Clicking on a specific cluster will take you to the Search view page, filtered on your selection.

(3) Controllers for the cluster are listed here. These can be deployments, daemonSets, etc. The value in parentheses is the number of running instances of the controller. Clicking on a controller will take you to the Search view page, filtered on your selection (filtered for the cluster and controller).

(4) Clicking "all events" under Search Logs will take you to the Search view page, filtered for all log messages for the selected cluster and controller.

(5) Additional information for each cluster and controller can be obtained by selecting various dashboards. For example, the K8s Metrics dashboard has information on CPU and memory usage, as well as warning events and Pod restarts.

(6) Labels attached to your controllers are listed here. Clicking on a specific label will take you to the Search view page, filtered for the cluster and label.