Log Monitoring
Logs are the files that have recorded the events and messages that occurred in applications and systems. It is important to check the logs to find anomalies for preventing system deterioration or detecting the failure causes.
Modern IT service building environments are changing to MSA or Kubernetes. As a result, the targets to be managed are increasing. In typical log monitorings, the tail
command or editor is used for checking after connecting the servers. However, in this case, it is difficult to use simple methods such as accessing individual servers one by one. How can you view the logs from hundreds or thousands of servers in severe cases?
Through the WhaTap log monitoring service, you can easily manage numerous logs.
The Linux tail
command is mainly used to check the logs whose content is added over time.
Key features
-
Central integrated management
WhaTap can manage a large number of logs from the center. It is very convenient because you can check the log details without accessing individual servers.
-
Collection of all logs
While collecting the logs selectively, important data may be missing. In general, WhaTap collects all logs. The collected logs can be checked in real time through the Live Tail menu.
-
Visibility
You can check the logs through various charts provided by WhaTap. Through this visibility, you can increase access to errors and issues and detect failures as soon as possible.
-
Flexible capacity management
While loading logs on individual servers, the logs may cause an excessive file system capacity being occupied. However, if the logs are collected through WhaTap, there is no need to maintain log files that occur on individual servers, and only the log maintenance period can be managed centrally.
-
Various analysis perspectives
To find and predict failures, you have to analyze logs from various perspectives. WhaTap can check the log count trends with specific tags or the logs filtered by specific tags. For frequently used patterns, you can save them as charts so that you can search them at any time.
-
Pattern notification
Once you have found a pattern of failures, you can set this as an alert to recognize or prevent problems as soon as possible. WhaTap provides Real-time Log Alert to receive notifications when specific keywords are included on an individual log basis and Composite Log Alert to receive notifications based on the count trend of logs containing specific tags.
Analyzing logs
Live Tail
Through Live Tail, the logs collected in real time can be viewed as they flow through the screen, just like using the tail
command. For more information about Live Tail, see the following.
Log Trend
Through Log Trend, you can see all the collected logs or the log count trend with specific tags. If the log counts are closely related to the times of failure occurrence and resolution, the failure cause analysis and response can be accelerated through the log occurrence trend. For more information about the log trend, see the following.
Log Search
Through Log Search, you can view all the collected logs or the logs with specific tags. The logs generated in a specific time period or specific server can be viewed based on tags. The Adjacent Log function that checks the logs that occurred before and after a selected log, can be used to see the situation in which a specific error or exception occurred. For more information about Log Search, see the following.