Search form

Most Popular

Upcoming Webinars

End-to-End ERP Performance Monitoring
November 29, 2018
Why You Should Monitor Your Middleware
December 06, 2018

On-Demand Webinars

IBM Cloud App Management - Single Control Point Monitoring of Kubernetes, Cloud and Traditional Environments
Cloud Monitoring Tips for Your Digital Transformation Plans
IBM Db2 and i Series Monitoring
Continuous Testing: The Path Forward
Finding the Needle in the Containerized Haystack
Advanced Testing Methods Using iOS12 & Appium
Monitoring Microservice Applications Is About Visibility - And It Isn't
AI-Powered APM – Your Compass for the CI/CD Journey
Mapping the Continuous Testing Landscape with Joe Colantonio
Personalizing Your APM Experience
Advanced Test Automation Using Selenium
Need Customized, Self-Service Dashboards Without Coding? Introducing IBM Cloud Application Business Insights
Balancing Digital Experience and Security
How to Deliver Exceptional End User Experience in Your Citrix Environment
How to Ensure High-Performing Microsoft .NET Applications
Building Ops Automation in DevOps
Continuous Delivery for a Highly Available Kubernetes Application
Why is IT Automation Growing Stronger?
Four Best Practices for Delivering Exceptional User Experience in VMware Horizon VDI Environments
How to Avoid Java and .NET Application Performance Issues Using Business Transaction Tracing
Kafka Monitoring Within Complex Environments
Citrix XenApp & XenDesktop 7.x Migration Trends - 2018 Survey Analysis
Enterprise Monitoring 2018 - Converged Application and Infrastructure Monitoring from a Single Pane of Glass
Are Your Cloud Applications Performing?
Does Using Citrix Cloud Services Make Performance Monitoring Easier?
Best Practices for Troubleshooting Slow Citrix Logon and Ensuring Excellent User Experience
IBM Cloud Automation Manager and IBM Cloud Private - Making Your Cloud Experience Developer-Friendly and Enterprise-Ready
Give Us 45 Minutes of Your Time and We'll Give You 5 Ways You Can Improve Automating Your Business Workloads
Get Total Performance Visibility Into Microsoft IT Services Through a Single Pane of Glass

All Webinars...

White Papers

Developing the 3 Fundamentals of Continuous Testing: People, Process & Technology
The Top 3 Roadblocks to Sustainable Continuous Testing
Monitoring Across the Middleware Stack for TIBCO, Solace and Kafka
Shift Left: 5 Steps for Advancing Quality into the Dev Cycle
Service Quality Management in the Microservices Age
10 Test Automation Frameworks for Cross Browser Testing
Six Pillars of Applying AI to Microservice Application Management
An Introduction to Selenium Testing with 4 Tips from the Pros
Application Performance Management in a Containerized World
The 3 Essential Building Blocks of Continuous Testing
Why Apps Succeed
The IT Digital Maturity Handbook
Forrester White Paper: Drop A Pin At The Intersection Of Digital Experience And Security
Converged Application & Infrastructure Performance Monitoring
Forrester Report: The Total Economic Impact of IBM Cloud APM
Industry Insights: 2018 Citrix XenApp & XenDesktop Migration Survey Results
Overcoming Performance Monitoring Tool Sprawl with a Single-Pane-of-Glass Solution
6 Approaches to Monitoring Complex Tibco-Centric Applications
The Power of Visual Correlation in Application Monitoring

All White Papers...

Visualizing Your Log Data
May 06, 2015

Haim Koschitzky
XpoLog

Share this

How do we organize log data in a meaningful way that will not only make sense, but also be practical, usable, visible, and accessible quickly; in addition to being organized to support DevOps and APM insights?

Despite numerous log data analysis deployments, we still identify many challenges users face regarding IT log data visualization, analysis, and insights. How can we make sure anomaly detection is fast and easy so that log management does not become too time-consuming? Here are some guidelines for building meaningful operational views and dashboards for IT, leveraging log search, log analysis, machine learning, and advanced analytics.

First Ask Questions

Although stating the obvious, before investing expensive efforts and resources into analyzing data, it is crucial to define your expectations and requirements. While in the past, merely collecting all log data and making it available for search was good enough, this is no longer the case.

In order to ask the right questions, determine what the most important use cases your log data has shown you and what role you want your log data to play in your future ongoing work. To do this, you must monitor system availability, software quality, continuous deployment, application performance, and business insights, troubleshoot, analyze security incidents, compliance audit etc.

There are specific use cases for the application life cycle. Architect, developer, tester, DevOps, APM, operations, and production support all have specific uses cases and requirements. Giving the right answer to the right question makes a big impact and will drive smart actions.

Then Visualize

Once the requirements and expectations are well defined, it is crucial to be able to visualize your findings for further analysis; the more detailed, the better. We recommend creating an App that contains a collection of dashboards. If possible, create a dashboard per topic or use case, and provide each one with a meaningful name (“performance”, “errors”, “user audit”).

Now create search queries, or use out of the box gadgets for analytics, to find example Apps that you will be able to use as examples of best use cases for log analysis data visualization.

How to Visualize

Once you’ve created search queries to analyze data and generate proper result sets, you will need to select the visualization gadget that best reads these result sets and visualizes it in the most effective way.

Here is a result set that aggregated and computed the avg. memory consumption and total memory usage of two application servers. Take a look at the figure below. On gadget 1 you can see the totals over 24 hr aggregated memory consumption at 1 hr intervals. This gadget tells the story of both servers. Gadgets 2 and 3 represent the same data but for each of the individual servers. Once we split the data for each server we discover that each of the servers had a very different memory consumption pattern.

An hourly aggregation for memory is far from being accurate; memory changes at a much faster rate. On the upper row of gadgets we see the totals for both servers (gadget 4), and two additional gadgets, 5 and 6, representing each server in 1 min intervals.


We were looking to monitor our application server memory consumption to avoid spikes that might crash one of our clusters. Choosing the right visualization tools, and in this case, intervals, makes a big difference.

Optimize Insights

Optimize your dashboards and visualization gadgets by verifying that they deliver the insights you’re after in the right resolution. In the example above, analyzing memory for the entire cluster did not provide a clear status image of the memory consumption, but grouping by server and later reducing the time interval resolution to minutes gave a clear understanding of which cluster spiked.

Actions

Once your Apps and Dashboards provide clear views and visualization, it becomes much easier to identify problems, trends, and insights on your IT and applications. Now you can monitor or view the dashboards live. Leverage the visibility and you will be able to take actions that will make your applications more agile, secure, and optimized for the business.

Ask More Questions

Go back to the first step. This is an ongoing process. Data changes every day. The content of logs and other data types is being updated by IT, developers, and vendors continuously. In order to stay ahead, keep asking questions and never stop looking for the answers.

Haim Koschitzky is CEO of XpoLog Ltd.

Share this

Related Links

XpoLog 6 will be available soon
XpoLog Named "Cool Vendor" in ITOA by Gartner

Hot Topics

Logging

The Latest

How IT Departments Are Successfully Adopting Artificial Intelligence Technologies
November 15, 2018

We all know artificial intelligence (AI) is a hot topic — but beyond the buzzword, have you ever wondered how IT departments are actually adopting AI technologies to improve on their operations? ...

AIOps and the Modern Enterprise
November 14, 2018

How can IT teams focus on the critical events that can impact their business instead of wading through false positives? The emerging discipline of AIOps is a much-needed panacea for detecting patterns, identifying anomalies, and making sense of alerts across hybrid infrastructure ...

APM and AIOps: Acronyms in Conflict, or Are They?
November 09, 2018

In a recent webinar AIOps and IT Analytics at the Crossroads, I was asked several times about the borderline between AIOps and monitoring tools — most particularly application performance monitoring (APM) capabilities. The general direction of the questions was — how are they different? Do you need AIOps if you have APM already? Why should I invest in both? ...

5 Golden Rules for Developers: Preparing Web and Mobile Apps for the Biggest Holiday Shopping Season Yet
November 08, 2018

There's no place like the web and smartphones for the holidays. With the biggest shopping season of the year quickly approaching, retailers are gearing up to experience the most traffic their online platforms (web, mobile, IoT) have ever seen. To avoid missing out on millions this holiday season, below are the top five ways developers can keep their apps and websites up and running without a hitch ...

How Understanding "Usage" Can Transform IT
November 07, 2018

Usage data is multifaceted, with many diverse benefits. Harvesting usage-driven insights effectively requires both good foundational technology and a nimbleness of mind to unify insights across IT's many silos of domains and disciplines. Because of this, leveraging usage-driven insights can in itself become a catalyst for helping IT as a whole transform toward improved efficiencies and enhanced levels of business alignment ...

Infrastructure Monitoring for Digital Performance Assurance
November 06, 2018

The requirements to maintain the complete availability and superior performance of your mission-critical workloads is a dynamic process that has never been more challenging. Here are five ways IT teams can measure and guarantee performance-based SLAs in order to increase the value of the infrastructure to the business, and ensure optimal digital performance levels ...

What You Should Be Monitoring to Ensure Digital Performance - Part 5
November 05, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 5, the final installment, offers some recommendations you may not have thought about ...

What You Should Be Monitoring to Ensure Digital Performance - Part 4
November 02, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 4 covers the infrastructure, including the cloud and the network ...

What You Should Be Monitoring to Ensure Digital Performance - Part 3
November 01, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 3 covers the development side ...

What You Should Be Monitoring to Ensure Digital Performance - Part 2
October 30, 2018

APMdigest asked experts from across the IT industry for their opinions on what IT departments should be monitoring to ensure digital performance. Part 2 covers key performance metrics like availability and response time ...