Help Center/ Application Operations Management/ User Guide (Ankara Region)/ User Guide/ Log Analysis/ Searching for Logs
Updated on 2024-04-15 GMT+08:00
View PDF
Share

Searching for Logs

AOM enables you to quickly query logs, and use log source information and context to locate faults.

  1. On the menu bar, choose Monitoring Center.
  2. In the navigation pane, choose Log Analysis > Log Search.
  3. On the Log Search page, click the System, or Host tab and set filter criteria as prompted.

    1. You can search for logs by system, or host.
      • For system logs, you can set filter criteria such as Host.
      • For host logs, you can set filter criteria such as Host.
    2. Enter a keyword in the search box. Rules are as follows:
      • Enter a case-sensitive keyword.
      • Enter a keyword for exact search. A keyword refers to a word between two adjacent delimiters.
      • Enter a keyword containing an asterisk (*) or a question mark (?) for fuzzy search. For example, enter ER?OR, *ROR, or ER*R.
      • Enter a phrase for exact search. For example, enter Start to refresh or Start-to-refresh. Note that hyphens (-) are delimiters.
      • Enter a keyword containing AND (&&) or OR (||) for search. For example, enter query logs&&error* or query logs||error.
      • If no log is found, you are advised to narrow down the search scope and add an asterisk (*) before and after the keyword for fuzzy match.

  4. View the search results of logs.

    The search results are sorted based on the log collection time. The keywords in the search results are highlighted. You can click in the Time column to switch the sorting order. indicates the default order. indicates the ascending order by time (the earliest log is displayed at the top). indicates the descending order by time (the latest log is displayed at the top).

    1. AOM allows you to view context. Click Context in the Operation column to view the previous or next logs of a log for fault locating.
      • In the Display Rows drop-down list, set the number of rows that display raw context data of the log.

        For example, select 200 from the Display Rows drop-down list.

        • If there are more than or equal to 100 logs printed before a log and more than or equal to 99 logs printed following the log, the preceding 100 logs and following 99 logs are displayed as the context.
        • If there are fewer than 100 logs (for example, 90) printed before a log and fewer than 99 logs (for example, 80) printed following the log, the preceding 90 logs and following 80 logs are displayed as the context.
      • Click Export Current Page to export displayed raw context data of the log to a local PC.

    To ensure that tenant hosts and services run properly, some components (for example, kube-dns) provided by the system will run on the tenant hosts. The logs of these components are also queried during tenant log query.

    1. Click View Details on the left of the log list to view details such as host IP address and source.

  5. (Optional) Click on the right of the Log Search page, select an export format, and export the search result to a local PC.

    Logs are sorted according to the order set in 4 and a maximum of 5000 logs can be exported. For example, when 6000 logs in the search result are sorted in the descending order, only the first 5000 logs can be exported.

    Logs can be exported in CSV or TXT format. You can select a format as required. If you select the CSV format, detailed information (such as the log content, host IP address, and source) can be exported. Only log content will be exported when you select the TXT format. Each line indicates a log.

  6. (Optional) Click Configure Dumps to dump the searched logs to the same log file in the OBS bucket at a time. For details, see Adding One-Off Dumps.
Parent topic: Log Analysis