OpenShift Logging Concepts

From NovaOrdis Knowledge Base
Revision as of 19:42, 30 July 2017 by Ovidiu (talk | contribs) (→‎Sizing)
Jump to navigation Jump to search

External

Internal

Overview

OpenShift provides log aggregation with the EFK stack. fluentd is used to capture logs from nodes, pods and application and stored log data in ElasticSearch. Kibana offers a UI for ElasticSearch. fluentd, ElasticSearch and Kibana are deployed as OpenShift pods, on dedicated infrastructure nodes. Logging components communicate securely. They are usually part of the "logging" namespace. Application developers can view the logs for projects they have view access for. Cluster administrators can view all logs.

Logging support is not provided by default but it can be enabled during installation, by setting "openshift_hosted_logging_deploy=true" in the Ansible hosts file.

Installation

Logging must be explicitly enabled during the advanced installation, as described here:

OpenShift hosts File - Logging Configuration

Then, the post-install logging configuration must be applied, as described here:

Post-Install Logging Configuration

There is also a dedicated Ansible playbook that can be used to deploy and upgrade aggregate logging.

Sizing

https://docs.openshift.com/container-platform/latest/install_config/aggregate_logging_sizing.html#install-config-aggregate-logging-sizing

Operation Logs

Organizatorium

Docker Container Logs

https://docs.openshift.com/container-platform/latest/install_config/install/host_preparation.html#managing-docker-container-logs

Docker containers use a json-file logging driver and store logs in /var/lib/docker/containers/<hash>/<hash>-json.log

Aggregated logging is only supported using the journald driver in Docker. More details in https://docs.openshift.com/container-platform/latest/install_config/aggregate_logging.html#fluentd-upgrade-source.

Retrieved from "https://kb.novaordis.com/index.php?title=OpenShift_Logging_Concepts&oldid=27383"