K
Q

Showing crashed/terminated pod logs on Kibana

9/3/2019

I am currently working on the ELK setup for my Kubernetes clusters. I set up logging for all the pods and fortunately, it's working fine.

Now I want to push all terminated/crashed pod logs (which we get by describing but not as docker logs) as well to my Kibana instance.

I checked on my server for those logs, but they don't seem to be stored anywhere on my machine. (inside /var/log/) maybe it's not enabled or I might not aware where to find them.

If these logs are available in a log file similar to the system log then I think it would be very easy to put them on Kibana.

It would be a great help if anyone can help me achieve this.

-- vivek
elasticsearch
kibana
kubernetes
logstash

Similar Questions

Use ephemeral volumes in K8S cluster
Running a K8S Deployment with pods scheduled in ARM-based and X68-based nodes
Where audit logs of starting/stopping pods/containers are stored on k8s
Azure node pool scaling using Azure Automation

1 Answer

9/4/2019

You need to use kube-state-metrics by which you can get all pod related metrics. You can configure to your kube-state-metrics to connect elastic search. It will create an index for a different kind of metrics. Then you can easily use that index to display your charts/graphs in Kibana UI.

https://github.com/kubernetes/kube-state-metrics

-- Sounak Saha
Source: StackOverflow