K
Q

Collect kubernetes' pods logs

9/16/2020

I'm trying to collect my application containers' logs throughout their entire life cycle. These containers are running inside Kubernetes pods, I've found solutions like Fluentd but I also found out that I need to specify a backend (Elasticsearch, AWS S3, etc.) whereas I want to collect logs inside files having specific names, for example podname_namespace_containername.json and then parse those files using a script. Is this possible with fluentd?

-- Mehdi Khlifi
docker
fluentd
kubernetes
logging

Similar Questions

Kubernetes HPA Auto Scaling Velocity
How to troubleshoot long pod kill time for GKE?
Zalando postgres operator issue with config
Tiller: dial tcp 127.0.0.1:80: connect: connection refused
Google Cloud DNS not resolving | Kubernetes Service

1 Answer

9/16/2020

By far the fastest way to setup log collection is https://github.com/helm/charts/tree/master/stable/fluent-bit. Refer values.yaml for all the options available. It supports multiple backends like ES, S3, Kafka. Every log event is enriched with pod metadata (pod name, namespace, etc) and tagged so that you can organize processing separately on a backend. E.g. on a backend you can select and parse only certain pods in certain namespaces.

According to https://kubernetes.io/docs/concepts/cluster-administration/logging/ you log to stdout/stderr, it gets written to the underlying node, a log collector (daemonset) collects everything and sends further.

enter image description here

FluentBit daemonset in Kubernetes implements exactly this architecture. More docs on FluentBit: https://docs.fluentbit.io/manual/concepts/data-pipeline

-- Max Lobur
Source: StackOverflow