Cloud Native Logging
Introduction
log-agent is built based on Fluent Bit and OpenTelemetry. It collects logs and Kubernetes events. This add-on supports CRD-based log collection policies. It collects and forwards standard output logs, container file logs, node logs, and Kubernetes event logs in a cluster based on configured policies. It also reports Kubernetes events to AOM for configuring event alarms. By default, all abnormal events and some normal events are reported.
In 1.3.2 and later versions, Cloud Native Logging reports all warning events and some normal events to AOM by default. The reported events can be used to configure alarms. If the cluster version is 1.19.16, 1.21.11, 1.23.9, 1.25.4, or later, after Cloud Native Logging is installed, events are reported to AOM by this add-on instead of the control plane component. After Cloud Native Logging is uninstalled, events will not be reported to AOM.
Notes and Constraints
This add-on is available only in clusters v1.17 or later.
Add-on Performance
Item |
Description |
Remarks |
---|---|---|
Size of a log |
Each individual log must not exceed 512 KB in size. In the case of multi-line logs, the length of each line will be calculated separately. |
None |
Maximum number of collected files |
On a single node, the total number of files that can be listened by all log collection rules is limited to 4,095. |
None |
Log collection rate |
|
Service quality cannot be ensured if any of these limits is exceeded. |
Configuration update |
Configuration updates take effect in 1 to 3 minutes. |
None |
Permissions
The fluent-bit component of the log-agent add-on reads and collects the stdout logs on each node, file logs in pods, and node logs based on the collection configuration.
The following permissions are required for running the fluent-bit component:
- CAP_DAC_OVERRIDE: ignores the discretionary access control (DAC) restrictions on files.
- CAP_FOWNER: ignores the restrictions that the file owner ID must match the process user ID.
- DAC_READ_SEARCH: ignores the DAC restrictions on file reading and catalog research.
- SYS_PTRACE: allows all processes to be traced.
Installing the Add-on
- Log in to the CCE console and click the cluster name to access the cluster console. In the navigation pane, choose Add-ons, locate Cloud Native Logging on the right, and click Install.
- On the Install Add-on page, configure the specifications as needed.
- If you selected Preset, you can choose between Low or High depending on the number of logs on nodes. The system will automatically set the number of add-on pods and resource quotas according to the preset specifications. You can see the configurations on the console.
You can select the Low option for clusters where the logs of a single node are less than 5000/s or 5 MB/s, and select the High option for clusters where the logs on a single node are less than 10000/s or 10 MB/s.
- If you selected Custom, you can adjust the number of pods and resource quotas as needed. High availability is not possible with a single pod. If an error occurs on the node where the add-on instance runs, the add-on will fail.
- If you selected Preset, you can choose between Low or High depending on the number of logs on nodes. The system will automatically set the number of add-on pods and resource quotas according to the preset specifications. You can see the configurations on the console.
- Configure add-on parameters, which is supported by the add-on of v1.6.2 or later. For details, see Tail.
Parameter
Description
Default Value
Large Specification
Other Specification
Initial Buffer Size (Buffer_Chunk_Size)
The size of the initial buffer used to read files.
256k
128k
Maximum Buffer Size (Buffer_Max_Size)
Limit on the buffer size for each monitored file. When a buffer is added, the number of memory buffers that can be added is restricted by this value. If the limit is exceeded, the file will be removed from the monitored file list.
1024k
512k
Memory Buffer Limit (Mem_Buf_Limit)
Memory limit when data is appended to the engine. When the limit is reached, the add-on will temporarily stop reading log file data. The reading will resume after the data is refreshed.
300mb
40mb
The unit can be case-insensitive k, kb, m, mb, g or gb. If no unit is specified, the default unit of byte will be used.
- Configure deployment policies for the add-on pods.
Scheduling policies do not take effect on add-on instances of the DaemonSet type.
Table 1 Configurations for add-on scheduling Parameter
Description
Multi AZ
- Preferred: Deployment pods of the add-on will be preferentially scheduled to nodes in different AZs. If all the nodes in the cluster are deployed in the same AZ, the pods will be scheduled to different nodes in that AZ.
- Required: Deployment pods of the add-on are forcibly scheduled to nodes in different AZs. There can be at most one pod in each AZ. If nodes in a cluster are not in different AZs, some add-on pods cannot run properly. If a node is faulty, add-on pods on it may fail to be migrated.
- Click Install.
Components
Component |
Description |
Resource Type |
---|---|---|
fluent-bit |
Lightweight log collector and forwarder deployed on each node to collect logs |
DaemonSet |
cop-logs |
Used to generate soft links for collected files and run in the same pod as fluent-bit |
DaemonSet |
log-operator |
Used to generate internal configuration files |
Deployment |
otel-collector |
Used to collect logs from applications and services and report the logs to LTS |
Deployment |
Add-on Usage
This add-on can collect container standard output logs, container file logs, node logs, and Kubernetes events. You can use LTS or AOM to store the collected logs. These services support different types of logs. For details, see Table 3.
Log Storage Location |
Supported Log Types |
How to Use |
---|---|---|
LTS |
|
Go to Logging to create a policy. For details, see Collecting Container Logs Using Cloud Native Logging. |
AOM |
Kubernetes events |
If the cluster version is 1.19.16, 1.21.11, 1.23.9, 1.25.4, or later, all abnormal events and some normal events will be reported by default. For details, see Reporting Kubernetes Events to AOM. |
Change History
Add-on Version |
Supported Cluster Version |
New Feature |
---|---|---|
1.6.1 |
v1.21 v1.23 v1.25 v1.27 v1.28 v1.29 v1.30 |
|
1.6.0 |
v1.21 v1.23 v1.25 v1.27 v1.28 v1.29 v1.30 |
|
1.5.2 |
v1.21 v1.23 v1.25 v1.27 v1.28 v1.29 |
The index function is added when the default log stream of container logs is created. |
1.4.5 |
v1.21 v1.23 v1.25 v1.27 v1.28 |
Fixed some issues. |
1.4.2 |
v1.21 v1.23 v1.25 v1.27 v1.28 |
|
1.3.2 |
v1.17 v1.19 v1.21 v1.23 v1.25 |
Supports reporting Kubernetes events to AOM. |
1.3.0 |
v1.17 v1.19 v1.21 v1.23 v1.25 |
Clusters 1.25 are supported. |
1.2.3 |
v1.17 v1.19 v1.21 v1.23 |
None |
1.2.2 |
v1.17 v1.19 v1.21 v1.23 |
log-agent is a cloud native log collection add-on built on open source Fluent Bit and OpenTelemetry and supports CRD-based log collection policies. It collects and forwards standard container output logs, container file logs, node logs, and Kubernetes event logs in a cluster following your rules. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot