![]() Local xyear, xmonth, xday, xdelimit, xhour, xminute, xseconds, xoffset, xoffsethour, xoffsetmin ![]() To receive events from Zabbix and other systems such as Nagios, Prometheus, SCOM, Ntopng, system handlers are provided with the ability to customize the code or write your own handlers.įor example, you can convert the date format to your liking: function is_array(t) Secondly, the monq Collector includes a built-in connector with Zabbix, which allows you to receive all events from Zabbix triggers and then view them on the same screen with the logs. If you paid attention to the title of this article you would notice that initially we wanted to tell you what is good about using monq in companies where Zabbix is used as an infrastructure monitoring system.įirstly, the product for collecting and analyzing logs is provided absolutely free of charge and without any restrictions on traffic and time. The average compression ratio is 1:20 which is a very good number. The key advantage of ClickHouse is the high speed of execution of SQL read queries (OLAP script), which is provided due to the following distinctive features:īut one of the most important features of ClickHouse is a very efficient saving of storage space. And the storage of those very logs is implemented in the columnar analytical DBMS ClickHouse. One of the features of this tool for working with logs is the ability to process the incoming data stream on the preprocessor using scripts and parsers that you create yourself, in the built-in Lua IDE.Īnother distinguishing feature is the product architecture. ![]() Monq is a whole set of components for support of IT infrastructure, which includes AIOps, automation, hybrid and umbrella monitoring, but today we are only interested in Monq Collector which is a free tool for collecting and analyzing logs. But since Humio is a paid SaaS service, and Loki is a very simple log aggregator without parsing, enrichment and other useful features, we will consider only Monq. The article has not described a number of systems such as Humio, Loki, and Monq. The authors opted for Graylog and in their article give examples of installing and configuring this product. Splunk partners and customers in Russia had to find new solutions after the expiration of their quite expensive Splunk licenses. Splunk lost users’ trust by simply leaving the Russian market without giving any reason. To summarize their experience:ĮLK turned out to be too cumbersome, resource-intensive, and very difficult to configure on large infrastructures. They revealed good and not so good (of course, for themselves) sides in the presented solutions. Our colleagues analyzed systems such as Splunk, Graylog, and ELK. The advantages and disadvantages of popular solutions for collecting logs have already been described elsewhere (in russian). Great variety of solutions for recording logs Together with monitoring services, logging helps to significantly save engineers' time when investigating certain incidents. If you are a software developer and for debugging you have to “walk” through and look at all the logs on the server then convenient viewing, analysis, filtering and search of logs in the web interface will simplify your actions and you will be able to concentrate more on the task of debugging your code.Īnalysis of logs helps to identify conflicts in the configuration of services, to determine the source of occurrence of errors, as well as to detect information security alerts. In the logs not only generic information about the occurrence of certain errors is written but also more detailed information about the errors that helps to understand the causes of these occurrences.Īfter you have launched your product and expect results from it, you need to constantly monitor the operation of the product in order to prevent failures before users can see them.Īnd how to analyze causes of failures of a server whose logs are no longer available (an intruder covering up the traces or any other force majeure circumstances)? - Only centralized storage of logs will help in this case. A constantly appearing error is difficult to localize, even knowing when and under what circumstances it manifests itself, without having logs in hand. ![]() Logging or, as they say, recording logs allows you to give answers to questions, what? where? and under what circumstances happened in your IT environment several hours, days, months, even years ago. Why collect logs and store them? Who needs it? If you use Zabbix to monitor your infrastructure objects but have not previously thought about collecting and storing logs from these objects then this article is for you.
0 Comments
Leave a Reply. |