Search form

Upcoming Webinars

Transform the Performance of Your Hyperscale Distributed Systems
August 09, 2022
Modern Strategies for Cloud Cost Optimization
August 16, 2022
Migrating to the Modern Data Stack
August 30, 2022

On-Demand Webinars

Beyond Observability: Optimizing High-Performance Big Data
Transform the Performance of your Hyperscale Distributed Systems
BigPanda Resolve 22 Virtual Conference
Automatically Optimize Kubernetes and Improve Container Visibility
Monitoring Spark on Kubernetes: Key Performance Metrics
Drive Better Business Decisions with Optimization and Observability
Reduce Your Cloud Spend with Kubernetes Capacity Optimization
Control Cloud Costs with IT Chargeback
Monitor and Automatically Improve Kubernetes Performance: 5 Best Practices
Gartner's Vision for AIOps in 2022 and Beyond
Tuning Apache Kafka for Optimal Big Data Performance
Take the Interactive Pepperdata Product Tour
Start Optimizing Your Kubernetes Deployment
Getting Started with Kubernetes the Right Way
BigPanda Pandapalooza
Improve Big Data Performance on Dataproc: Best Practices
Managing Big Data Analytics in the Cloud – Are You Ready?
Spark Performance Tuning on Kubernetes Best Practices - Part 2
Eliminate Waste and Lower Cloud Costs for GPU Accelerated Big Data Applications
Big Data Cloud Automation: Navigating Through the Noise of Recommendations
Cross-Domain Enrichment for AIOps: the Linchpin or a Landmine?
Cloud Performance Benchmarking: How Is Your Performance?
Optimize Spark Performance on Kubernetes
When Cloud Costs Run Amok: Big Data Architect's Worst Nightmare?
Presto Performance Best Practices: Get Visibility Into Your Presto Queries
Drive Performance on Amazon EMR with Managed Autoscaling
Big Data Self-Service Performance Analytics: Best Practices
Kafka Performance: Best Practices for Monitoring and Improving
Fix Spark Performance Issues Without Thinking Too Hard
Managing Big Data Analytics in the Cloud–Are You Ready?

All Webinars...

Analyst Reports

Gartner Top Strategic Technology Trends for 2022
Gartner 2022 Market Guide for AIOps Platforms
GigaOm Radar for AIOps
451 Research: The Future of IT Ops is Autonomous

All Analyst Reports...

White Papers

An Introduction to AIOps
Grok AIOps Transforms IT Operations for Global Telecom Service Provider
IT Ops Reporting and Analytics Are Broken
2022 Big Data Kubernetes Survey Results
Pragmatic AIOps: A Buyer’s Guide
A Practical Guide to IT Ops Maturity
How Total Experience Will Drive Availability in 2022
Observability with AIOps For Dummies
Cost of Downtime Report
AIOps Benchmark Report
Enrichment for Faster Event Correlation and Root Cause Analysis
Improve Performance with Real Insight Into How Queries are Executing
Spark on Hadoop: A Quick Guide
Big Data Cloud Technology Report 2021
Scalability in Cloud Computing
CIO Dive: How AIOps Cuts Costly Downtime and Supports Teams
Autonomous Operations: How to Intelligently Automate and Scale IT Operations at Global Enterprises
AIOps Brings Calm to Overwhelmed IT Ops Teams
Can AIOps Reduce the Noise?

All White Papers...

Visualizing Your Log Data
May 06, 2015

Haim Koschitzky
XpoLog

Share this

How do we organize log data in a meaningful way that will not only make sense, but also be practical, usable, visible, and accessible quickly; in addition to being organized to support DevOps and APM insights?

Despite numerous log data analysis deployments, we still identify many challenges users face regarding IT log data visualization, analysis, and insights. How can we make sure anomaly detection is fast and easy so that log management does not become too time-consuming? Here are some guidelines for building meaningful operational views and dashboards for IT, leveraging log search, log analysis, machine learning, and advanced analytics.

First Ask Questions

Although stating the obvious, before investing expensive efforts and resources into analyzing data, it is crucial to define your expectations and requirements. While in the past, merely collecting all log data and making it available for search was good enough, this is no longer the case.

In order to ask the right questions, determine what the most important use cases your log data has shown you and what role you want your log data to play in your future ongoing work. To do this, you must monitor system availability, software quality, continuous deployment, application performance, and business insights, troubleshoot, analyze security incidents, compliance audit etc.

There are specific use cases for the application life cycle. Architect, developer, tester, DevOps, APM, operations, and production support all have specific uses cases and requirements. Giving the right answer to the right question makes a big impact and will drive smart actions.

Then Visualize

Once the requirements and expectations are well defined, it is crucial to be able to visualize your findings for further analysis; the more detailed, the better. We recommend creating an App that contains a collection of dashboards. If possible, create a dashboard per topic or use case, and provide each one with a meaningful name (“performance”, “errors”, “user audit”).

Now create search queries, or use out of the box gadgets for analytics, to find example Apps that you will be able to use as examples of best use cases for log analysis data visualization.

How to Visualize

Once you’ve created search queries to analyze data and generate proper result sets, you will need to select the visualization gadget that best reads these result sets and visualizes it in the most effective way.

Here is a result set that aggregated and computed the avg. memory consumption and total memory usage of two application servers. Take a look at the figure below. On gadget 1 you can see the totals over 24 hr aggregated memory consumption at 1 hr intervals. This gadget tells the story of both servers. Gadgets 2 and 3 represent the same data but for each of the individual servers. Once we split the data for each server we discover that each of the servers had a very different memory consumption pattern.

An hourly aggregation for memory is far from being accurate; memory changes at a much faster rate. On the upper row of gadgets we see the totals for both servers (gadget 4), and two additional gadgets, 5 and 6, representing each server in 1 min intervals.


We were looking to monitor our application server memory consumption to avoid spikes that might crash one of our clusters. Choosing the right visualization tools, and in this case, intervals, makes a big difference.

Optimize Insights

Optimize your dashboards and visualization gadgets by verifying that they deliver the insights you’re after in the right resolution. In the example above, analyzing memory for the entire cluster did not provide a clear status image of the memory consumption, but grouping by server and later reducing the time interval resolution to minutes gave a clear understanding of which cluster spiked.

Actions

Once your Apps and Dashboards provide clear views and visualization, it becomes much easier to identify problems, trends, and insights on your IT and applications. Now you can monitor or view the dashboards live. Leverage the visibility and you will be able to take actions that will make your applications more agile, secure, and optimized for the business.

Ask More Questions

Go back to the first step. This is an ongoing process. Data changes every day. The content of logs and other data types is being updated by IT, developers, and vendors continuously. In order to stay ahead, keep asking questions and never stop looking for the answers.

Haim Koschitzky is CEO of XpoLog Ltd.

Share this

Related Links

XpoLog 6 will be available soon
XpoLog Named "Cool Vendor" in ITOA by Gartner

Hot Topics

Logs

The Latest

IT Leaders Take Steps to Improve Visibility into Their Attack Surface
August 08, 2022

Hybrid and remote work environments have been growing significantly in the past few years. As individuals move away from traditional office settings in today's new remote and hybrid environments, many operational issues such as poor visibility into asset status and refreshes, unaccounted assets, and overspending on software are becoming a bigger challenge for IT departments ...

What is MLOps?
August 05, 2022

MLOps or Machine Learning Operations are a combination of best processes and practices that businesses use to run AI successfully ... While it is a relatively new field, MLOps is a collective effort that captured the interest of data scientists, DevOps engineers, AI enthusiasts, and IT ...

Multi-Cloud Complexity and Chaos Presents Challenges and Opportunities for Service Provider Relationships
August 04, 2022

The data is in: enterprises are not happy with their managed service providers (MSPs) and cloud service providers (CSPs). According to the latest CloudBolt Industry Insights report, Filling the Gap: Service Providers' Increasingly Important Role in Multi-Cloud Success, 80% are so unsatisfied with their existing MSP and/or CSP, they are actively looking to replace them within 12 months ...

Using Low Code to Overcome Day-to-Day Complexities
August 03, 2022

The last two years have accelerated massive changes in how we work, do business, and engage with customers. According to Pega research, nearly three out of four employees (71%) feel their job complexity continues to rise as customer demands increase, and employees at all levels feel overloaded with information, systems, and processes that make it difficult to adapt to these new challenges and meet their customers' growing needs ...

Even if the Job Market Shifts to Favor Employers, There Is One Thing They Still Need to Get Right
August 02, 2022

Investing in employees will always be smart business. And right now, investing in employees means giving people the resources — and ability — to optimize performance ... For pretty much every company, that means delivering the digital tools necessary to facilitate seamless, secure, user-friendly access and connectivity ...

Anxious to Digitally Transform but Hesitant to Automate? Try Partial Automation
August 01, 2022

Digital transformation can be the difference between becoming the next Netflix and becoming the next Blockbuster Video. With corporate survival on the line, "digital transformation" is no longer merely an impressive buzzword to throw around in boardrooms. It's the ticket for entry into the digital era, a fundamental business strategy for every modern company ...

What Is AIOps?
July 29, 2022

IT infrastructure has rapidly evolved over the last decade, and as a result important specialized tools have been developed and an entire dedicated industry has grown up to serve the need for monitoring these IT systems and services in order to keep them operational and efficient ...

Poor Digital Experience with Consumer Medical Wearables Is Wearing Thin
July 28, 2022

At Cisco AppDynamics, we recently conducted research exploring consumer attitudes and behaviors in relation to wearable technology ... In our study, 87% of global consumers claimed that trust is a critical factor when choosing a wearable medical device or application brand. And, 86% expect companies offering wearable technology and applications to demonstrate a higher standard of protection for their personal data than any other technology they use ...

Why Digital Quality Matters More Than Ever
July 27, 2022

You've been here before: waiting for a web page to load. You keep refreshing it, but still no luck. How many times will you try to reload the page before visiting a different site? Probably not too many. Brands today have just a few moments at most to captivate and delight potential customers ...

Are We Approaching an Observability Tipping Point?
July 26, 2022

In the DevOps world, observability is trumpeted and lauded in many corners. However, in reading much of the coverage, there seemed to be some more fundamental issues at play. It's time to demystify the idea of observability, shedding light on what it means in a broader context. And once we break down the concept and its true value to an organization, let's answer a more important question: Are we approaching an observability tipping point? ...