Search form

Most Popular

Upcoming Webinars

SignalFx Live Demo
May 22, 2019
Breakthrough Innovations in SaaS and Cloud Performance
May 23, 2019
IBM Operations Analytics: A Cognitive Monitoring Solution
May 30, 2019
The Power of Microclimate Delivered Through IBM Cloud App Management
June 20, 2019

On-Demand Webinars

Closing the Feedback Loop for Engineers
Managing IBM Middleware with IBM Application Performance Management
Application Monitoring Made Simple with IBM Cloud App Management's SRE Golden Signal Monitoring
Modernizing Operations Management with NOI Event Analytics
Operations Management in Action with Netcool Operations Insights
Is the New Outlook Really Faster?
Monitoring Kubernetes and Service Mesh Environments
Assuring Performance in Hybrid Cloud Ecosystems | QOS and User Experience in the Digital Age
IBM Cloud App Management - Single Control Point Monitoring of Kubernetes, Cloud and Traditional Environments
Business Dashboards, Application Performance Analytics and Admin Functions
Server and Infrastructure Monitoring from a Single Console
Application Performance Monitoring with Code Level Diagnostics
Delivering the Right End User Experience with Your Application Performance
Need Customized, Self-Service Dashboards Without Coding? Introducing IBM Cloud Application Business Insights
How to Deliver Exceptional End User Experience in Your Citrix Environment
How to Ensure High-Performing Microsoft .NET Applications
Continuous Delivery for a Highly Available Kubernetes Application
Four Best Practices for Delivering Exceptional User Experience in VMware Horizon VDI Environments
How to Avoid Java and .NET Application Performance Issues Using Business Transaction Tracing
Citrix XenApp & XenDesktop 7.x Migration Trends - 2018 Survey Analysis
Enterprise Monitoring 2018 - Converged Application and Infrastructure Monitoring from a Single Pane of Glass

All Webinars...

Analyst Reports

Gartner Magic Quadrant for Application Performance Monitoring 2019
Forrester Report: The Total Economic Impact of IBM Cloud APM
Gartner MQ for Network Performance Monitoring and Diagnostics 2019

All White Papers...

White Papers

Driving Performance in Modern Data Applications
How Do Releases Affect Software Quality?
Signal vs Noise: Identifying Which Fixes Are Important and Impactful
Best Practices to Ensure High-Performing Java Applications
The Definitive Guide to Serverless Monitoring and Observability
Monitoring Microservices on Kubernetes
Metrics: The Foundation For Cloud Monitoring In A Real-Time World
Operational Intelligence for the Entire Organization
Best Practices Guide for Creating Alert Detectors
The 4 Key Challenges of Cloud Monitoring
Converged Application & Infrastructure Performance Monitoring
Industry Insights: 2018 Citrix XenApp & XenDesktop Migration Survey Results
Overcoming Performance Monitoring Tool Sprawl with a Single-Pane-of-Glass Solution

All White Papers...

The No-BS Guide to Logging - Part 2
A vendor-neutral checklist to help you get your log strategy straight
December 08, 2015

Sven Dummer
Loggly

Share this


Start with The No-BS Guide to Logging - Part 1

Coming off of the last post outlining the necessity for log management, the process of choosing logging software can seem daunting. The following are major elements of a good log strategy and can also serve as checklist items when you shop for a log management solution:

Collect, Aggregate, Retain

It's crucial to think about your data retention needs and the costs associated with storing them. How long do you need to keep the logs? Do you need them just for troubleshooting, or also for business intelligence type of analysis? Are there regulatory or audit requirements that require you to keep the logs for a certain period of time?

Your daily log volume might already be large, but keep in mind that it doesn't take much to multiply the volume temporarily. For example, a component failure and the resulting log messages in a complex system could easily quadruple the amount of log messages. An external event could have the same effect: if you run an online store, Black Friday might balloon your sales as well as your log volumes. If your log aggregation doesn't scale, you could lose your main troubleshooting foundation when you need it most.

Handle Log Diversity

Log files come in a variety of formats, some following standards and conventions, others completely custom. Your log solution should be able to parse and present the data in a comprehensive form in near real-time, and it should allow to define custom parsing rules. A desirable feature is the ability to add metadata.

Reveal What Matters

Just having a search tool is not enough. To make sense of your log data and the correlation between different data points, you need real-time indexing and parsing, grouping, along with powerful analytics, customizable dashboards, and data visualization. Your log analytics solution should provide a treasure map to the contents of your logs, not just a metal detector that you must use to scan indiscriminately.

Detect Anomalies

Given the volume and complexity of log data, you can't rely on searching for problems. Things you never anticipated happening are typically the type of problems that hurt the most. A good log analytics solution should be able to learn what is “normal” in your log data, and automatically identify and highlight any deviations from norms.

Make Your Own Apps Log

If you write your own code, your log management solution must be able to parse and analyze it. Consider using a well-established data format like JSON (our recommendation) or XML. Whatever you choose, make sure it's plain text format (not binary), that it is human-readable, and easy to parse. Your log solution should be able to easily receive the logs from your application and allow you to set up custom parsing rules if needed.

Be Alert(ed)

Just like every good monitoring application, every good log management solution should allow to send you and your teams alerts based on defined events, like error messages. It should be possible to send these alerts through common third party collaboration tools.

Don't Break the Bank

Cloud technologies made running distributed systems and elastic compute farms affordable for SMBs. The bill for the troubleshooting tools should be affordable, too. There are fully cloud-based SaaS solutions out there, as well as on-premise products and hybrids, which typically come at higher costs (including those for hardware and datacenter footprint).

Key criteria to decide if SaaS or on-premise solutions are right for you are the sensitivity and volume of your data. Security or privacy concerns or regulatory requirements may keep you from transferring data across public networks. Similarly, the sheer data volume could make this impossible or too expensive.

Sven Dummer is Senior Director of Product Marketing at Loggly.

Share this

Related Links

www.loggly.com
The No-BS Guide to Logging - Part 1
Loggly Joins the Vendor Forum

Hot Topics

Logging

The Latest

Digital Experience Linked with Company Growth, Competitive Position and Employee Sentiment
May 21, 2019

Findings of the Digital Employee Experience survey from VMware show correlation between enabling employees with a positive digital experience (i.e., device choice/flexibility, seamless access to apps, remote work capabilities) and an organization's competitive position, revenue growth and employee sentiment ...

DevOps and AIOps: Developing A New Culture
May 20, 2019

In today's competitive landscape, businesses must have the ability and process in place to face new challenges and find ways to successfully tackle them in a proactive manner. For years, this has been placed on the shoulders of DevOps teams within IT departments. But, as automation takes over manual intervention to increase speed and efficiency, these teams are facing what we know as IT digitization. How has this changed the way companies function over the years, and what do we have to look forward to in the coming years? ...

The State of IT Transformation: Legacy Infrastructure Jeopardizes Transformation Initiatives
May 16, 2019

Although the vast majority of IT organizations have implemented a broad variety of systems and tools to modernize, simplify and streamline data center operations, many are still burdened by inefficiencies, security risks and performance gaps in their IT infrastructure as well as the excessive time it takes to manage legacy infrastructure, according to the State of IT Transformation, a report from Datrium ...

3 Critical Network Tasks Made Easier by Scale-Out Packet Broker Technology
May 15, 2019

When it comes to network visibility, there are a lot of discussions about packet broker technology and the various features these solutions provide to network architects and IT managers. Packet brokers allow organizations to aggregate the data required for a variety of monitoring solutions including network performance monitoring and diagnostic (NPMD) platforms and unified threat management (UTM) appliances. But, when it comes to ensuring these solutions provide the insights required by NetOps and security teams, IT can spend an exorbitant amount of time dealing with issues around adds, moves and changes. This can have a dramatic impact on budgets and tool availability. Why does this happen? ...

IT Professionals Say Fast Actionable Data Remains a Myth
May 14, 2019

Data may be pouring into enterprises but IT professionals still find most of it stuck in siloed departments and weeks away from being able to drive any valued action. Coupled with the ongoing concerns over security responsiveness, IT teams have to push aside other important performance-oriented data in order to ensure security data, at least, gets prominent attention. A new survey by Ivanti shows the disconnect between enterprise departments struggling to improve operations like automation while being challenged with a siloed structure and a data onslaught ...

AI Assets and Intellectual Property Ownership
May 13, 2019

A subtle, deliberate shift has occurred within the software industry which, at present, only the most innovative organizations have seized upon for competitive advantage. Although primarily driven by Artificial Intelligence (AI), this transformation strikes at the core of the most pervasive IT resources including cloud computing and predictive analytics ...

Benchmarking Competencies for Digital Performance - Part 2
May 09, 2019

When asked who is mandated with developing and delivering their organization's digital competencies, 51% of respondents say their IT departments have a leadership role. The critical question is whether IT departments are prepared to take on a leadership role in which collaborating with other functions and disseminating knowledge and digital performance data are requirements ...

Benchmarking Competencies for Digital Performance - Part 1
May 08, 2019

The Economist Intelligence Unit just released a new study commissioned by Riverbed that explores nine digital competencies that help organizations improve their digital performance and, ultimately, achieve their objectives. Here's a brief summary of 7 key research findings you'll find covered in detail in the report ...

How Critical is Omni Channel Experience Testing for New-Age Enterprises?
May 07, 2019

Today, the overall customer scenario has digitally transformed and practically there is no limitation to the ways in which the target customers can be reached. These opportunities are throwing multiple challenges for brands and enterprises, and one of the prominent ones is to ensure Omni Channel experience for customers ...

Businesses Recognize Value of Data Yet Struggle with Data Protection
May 06, 2019

Most businesses (92 percent of respondents) see the potential value of data and 36 percent are already monetizing their data, according to the Global Data Protection Index from Dell EMC. While this acknowledgement is positive, however, most respondents are struggling to properly protect their data ...