Meet Grafana LOKI, a Log Aggregation System for EVERYTHING

แชร์
ฝัง
  • เผยแพร่เมื่อ 7 ธ.ค. 2024

ความคิดเห็น • 355

  • @TechnoTim
    @TechnoTim  3 ปีที่แล้ว +68

    OK, nerd talk: What's your favorite logging system? (would this ever come up in a normal conversation???)

    • @axelolaussonholtenas2970
      @axelolaussonholtenas2970 3 ปีที่แล้ว +6

      LibreNMS

    • @camerontgore
      @camerontgore 3 ปีที่แล้ว +12

      For prod systems I really love Splunk

    • @bruceritchie7613
      @bruceritchie7613 3 ปีที่แล้ว +9

      I've tried graylog, elk, datadog, cloud watch and a few others. Most are overkill, some are crazy expensive and none are perfect (or even great) Loki was on the 'check out at some point' list

    • @VoislavVasiljevski
      @VoislavVasiljevski 3 ปีที่แล้ว +11

      ELK (elasticsearch, logstash, kibana)

    • @michaelkasede1489
      @michaelkasede1489 3 ปีที่แล้ว +9

      @@VoislavVasiljevski ELK is definitely on the "one of the best" list. It's only down side is, it's resource intensive.

  • @forzaracer
    @forzaracer ปีที่แล้ว +21

    These guides are insane. No one goes to the detail that you do. You explain why and how commands and config files work rather that just reading them. Love your channel!

  • @thegeogian
    @thegeogian 3 ปีที่แล้ว +65

    "Make sure you're in a directory... I dont know where else you'd be..." Made me laugh so hard xD

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +22

      haha! I was going to re-record that part but I was like "just roll with it"

    • @thegeogian
      @thegeogian 3 ปีที่แล้ว +12

      @@TechnoTim best decision

    • @HTOP1982
      @HTOP1982 ปีที่แล้ว

      Root?

  •  3 ปีที่แล้ว +25

    Great tutorial! One thing to note if you want to log specific docker containers you don't need to install promtail or change the deamon file. Just need the docker plugin for Loki and extra configuration in docker-compose for your specific containers that should use dedicated Loki logging driver.

    • @ClaudeAlexandreRochatProfile
      @ClaudeAlexandreRochatProfile ปีที่แล้ว +3

      Hello, this sound interesting can you give an example or link ? Thanks

    • @chelo-homelab
      @chelo-homelab 9 หลายเดือนก่อน

      Yes please, that will help a ton!

  • @resetToDefaultSettings
    @resetToDefaultSettings 2 ปีที่แล้ว +2

    I've watched so many deployment videos trying to get a better all around understanding on all the NMS out there, what they can do, how they operate under the hood, etc. This by far is the absolute best I have seen and definitely earned you a sub. Most deployment videos tend to be quite dry, very un-explainative, and usually feel like a 'just do this real quick and it works' video. Thank you!!!

  • @rupert8606
    @rupert8606 2 ปีที่แล้ว

    Fantastic tutorial... everything explained really well, and worked perfectly.. great way to get up and running with Loki / Promtail / Grafana quickly!!

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว +1

      Glad it helped!

  • @AshfaqueAhmed-b8d
    @AshfaqueAhmed-b8d ปีที่แล้ว +2

    Yo bro, I like your video and the way explained every single bit and steps are just beyond awesome. Thanks for this quality content. God bless you my friend.

  • @Harry-hi3kr
    @Harry-hi3kr 3 ปีที่แล้ว +7

    Been using Loki for over 2 years for work and play. Even out performed some enterprise level logging we tried too!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +1

      Nice! Thanks for sharing!

  • @brightly9368
    @brightly9368 2 ปีที่แล้ว +2

    IDK may be I am wrong fix me if so. The man talks as if he is talking inside my brain. Awesome job

  • @toshy50
    @toshy50 3 ปีที่แล้ว +2

    Thanks man! This is just so much easier and less troublesome then configuring a proper ELK stack.

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Glad it helped!

  • @UzielBueno-xd2ud
    @UzielBueno-xd2ud ปีที่แล้ว +2

    Thanks! This was informative! It's worth mentioning that Promtail is not required if you are setting Loki as the Docker daemon default logging driver

  • @paulnieuwkamp8067
    @paulnieuwkamp8067 3 ปีที่แล้ว +3

    Hi Tim, you look like the kind of guy to keep (their system) up to date, but for those that may not know, there was a high-severity, zero-day vulnerability for Grafana a few days ago that enabled remote access to local files. Anybody that could access the site could access any file on the system, like for instance /etc/passwd. There are proof-of-concepts publicly available so it takes hardly any skill for script kiddies to start scanning.
    Grafana released a fix right away. If you have not already, install the latest versions / patches!

    • @toshy50
      @toshy50 3 ปีที่แล้ว +1

      +1 I've noticed this as well, but by using the "latest" tag the fixed version should be pulled next time you up the containers with the "--build" argument. Just want to add a small note for others as well, that using "latest" is not a best practice, and you should specify the version you want to use (especially in production), else you could end up pulling a vulnerable version without even realizing.

  • @weitanglau162
    @weitanglau162 3 ปีที่แล้ว +36

    Please make a video for Tempo as well!
    Then we can see how you monitor logs, traces and metrics using grafana and setting alerts!
    That would be cool!

    • @annanayagarwal9836
      @annanayagarwal9836 3 ปีที่แล้ว +2

      Tempo Maintainer here and YES! Would love to see that!

  • @renobodyrenobody
    @renobodyrenobody 2 ปีที่แล้ว

    Excellent! I am a long time user of Grafana and do a lot with it, but now the job is to manage the logs: here we are! Loki is the tool we want to deploy. Thanks a lot for your video, brillant, will be very helpful!

  • @TrueCharts
    @TrueCharts 3 ปีที่แล้ว +2

    We went ahead and added Grafana and Loki to our TrueNAS SCALE Apps as well :)
    Took some work, but well worth it ^^

  • @ThomasWilent
    @ThomasWilent 2 ปีที่แล้ว

    5 min in and I can already tell your my new favorite tech guide guy. The detail is really welcome!

  • @pivertd
    @pivertd ปีที่แล้ว

    Now, because of you, I want it ! Thanks for the great work.

  • @itskagiso
    @itskagiso 2 ปีที่แล้ว +2

    This was a lengthy but worth every second. Managed to get this up and running and Im happy but I would love a guide on getting syslog integrated

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว +2

      Nice work! Noted!

  • @JohnMatthew1
    @JohnMatthew1 ปีที่แล้ว

    GREAT VIDEO, got me through Loki and Syslog, thank you Tim

  • @GeorgeKowalski
    @GeorgeKowalski 3 ปีที่แล้ว

    Thanks!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Wow! Thank you!

  • @jaygreentree4394
    @jaygreentree4394 3 ปีที่แล้ว +4

    Before watching this video I was thinking to myself I wish Tim had a grafana tutorial.

  • @royalcanadianbearforce9841
    @royalcanadianbearforce9841 2 ปีที่แล้ว +2

    Just found your channel. I freaking LOVE these deep dives. Thank you so much for your hard work and insights!

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว

      Thank you and welcome!

  • @magnoliaraoul
    @magnoliaraoul 3 ปีที่แล้ว +2

    I was waiting for this video. Very well explained as always, thanks Tim !
    To take a quick glance at my docker logs, i like to use Dozzle, a very small and straight to the point tool, but it does the job

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Thank you! Glad you liked it!

  • @wildflowers465
    @wildflowers465 2 ปีที่แล้ว

    Remap Caps Lock to Ctrl if your control key is broken! Easier to reach, I do this by default. Great tutorial.

  • @larsvontrierpung9337
    @larsvontrierpung9337 ปีที่แล้ว

    Thanx a lot. Something that would be cool is to have a guide howto setup loki,mimir,tempo with grafana and prometheus in k8. Thanks!

  • @jharding65
    @jharding65 3 ปีที่แล้ว +1

    This is great and timely! Awesome vid! You make logging look fun! Gonna try it out right now!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Thank you! Let us know how it goes!

  • @belbono
    @belbono 2 ปีที่แล้ว +1

    The docker loki plugin had a serious problem, so it was not an option for production use. I don´ t know if this issue has been solved. The last time I was reading through the related issues the developers said, that they might not be able to provide a solution anytime soon. Let me describe: If your container host has high IO load and/or the loki server is not reachable for some reason the whole docker daemon hang up, because it wasn´t able to write the logs. The worst possible situation is when shutting down multiple containers. It wasn´ t possible to define some timeout. It was required to kill the daemon process and remove the container files (/var/lib/docker/containers) the daemon normally manages.
    I never used the plugin again. I´m happy with configuring the log property of a container and have promtail to scrape this. The result is the same, but without the possibility of a blocked daemon.

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว

      Thanks for sharing your expertise and experience!

  • @michaelganesan4578
    @michaelganesan4578 2 ปีที่แล้ว

    Thank you for the demo. I really appreciate it. I am in the process of setting up a syslog server.

  • @fretbuzzly
    @fretbuzzly 7 หลายเดือนก่อน +10

    I swear software is annoying. If you look at the official docs to install this thing using docker-compose there's no mention of most of what Tim talks about. "Creake a loki folder and run this wget. Done." And if you look at the yaml file from the repo it's completely different than Tim's. If software developers knew how to communicate they'd be dangerous.

    • @oxJake
      @oxJake 5 หลายเดือนก่อน +1

      It’s because of the age of the video software has updates things change

  • @slothchunk
    @slothchunk ปีที่แล้ว

    thank you for validating my use of nano. we are nano brothers, brother.

  • @grouper1596
    @grouper1596 6 หลายเดือนก่อน

    Thank you for the video. Helped a lot!

  • @vigscodes
    @vigscodes ปีที่แล้ว +2

    Is there a GitHub repository showing the various configuration files? That would be helpful.

  • @nada176
    @nada176 3 ปีที่แล้ว +2

    Messing with influxdb but will check out Loki next. Wondering how Loki performs with TBs of logs without switching to cloud storage. Thanks for the video!

  • @hassanad94
    @hassanad94 5 หลายเดือนก่อน

    Thanks for this tuto. :) I get a lot of value from it :D

  • @michaelcooper5490
    @michaelcooper5490 ปีที่แล้ว

    Awesome tutorial Tim, as usual you nailed thank you for your hard work.

  • @chrisumali9841
    @chrisumali9841 3 ปีที่แล้ว

    Thanks for the demo and info, have a great day

  • @kokizzu
    @kokizzu 3 ปีที่แล้ว +1

    you can use ./bla (relative path) for binding volume

  • @rupakrath637
    @rupakrath637 ปีที่แล้ว

    Thank you so much for the knowledgeable session

  • @MadChristianX
    @MadChristianX 2 ปีที่แล้ว +1

    Thank you for your great work, i think i have nearly a copy of your homelab in my home

  • @Stoney_Eagle
    @Stoney_Eagle 3 ปีที่แล้ว

    You can't start logging this professional now dude, I stayed hidden so far from you but now it's impossible 🤣
    You have so many docker tutorials and you're actuality running them in your house that... I have to...
    I hereby declare you the docker King of TH-cam!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +1

      Thanks 😅. I did get a little enterprise on this one, did I? 😆

    • @Stoney_Eagle
      @Stoney_Eagle 3 ปีที่แล้ว

      @@TechnoTim This is what I want in my feed, some good knowledge instead of that Tiktok crap. 😉

  • @simonostendorf6280
    @simonostendorf6280 3 ปีที่แล้ว +3

    New monitoring:
    error and alert monitoring: CheckMK
    performance monitoring: Prometheus + Grafana
    log monitoring: Loki + Grafana
    status monitoring: uptime kuma

    • @shekharnandkoemarsing158
      @shekharnandkoemarsing158 3 ปีที่แล้ว

      Only need a trace management solution and you are all set up

    • @MrNecrotik
      @MrNecrotik 3 ปีที่แล้ว

      Starting to get into k8s but wouldn't your alerting and status all be in Grafana?

    • @simonostendorf6280
      @simonostendorf6280 3 ปีที่แล้ว +1

      @@MrNecrotik Yes its inside K8S. I think i will use two different grafana instances

  • @sevanchandra1
    @sevanchandra1 2 ปีที่แล้ว

    You are my inspiration!! Great job!!

  • @MarkDodgson
    @MarkDodgson 2 ปีที่แล้ว +4

    Great video, I have a question about the promtail adding docker section. when you set up the docker loki driver, the daemon config was sending logs directly to loki so I am not sure what the promtail configuration actually did in this setup. Additionally, the promtail config was set to push from /var/lib/containers.... but this would have ben for the folder within the container of promtail only and not host. Have I missunderstood something?

    • @WoBuGs-yt
      @WoBuGs-yt 9 หลายเดือนก่อน +1

      You are correct, I believe the loki driver method is completely different form the promtail one with the docker pipeline stage
      See the other comment I just posted about this for more details :)

  • @TheApeMachine
    @TheApeMachine 3 ปีที่แล้ว +2

    You know it's like really simple to develop plugins for Grafana? In my recent job we had to develop some very custom dashboards on the data we were collecting and it turns out Grafana has this whole eco-system to develop not only panel plugins, or data source plugins, but even app plugins, which integrate directly into the Grafana UI. It's really nice, since you get all user management and auto-reloading of data mechanisms for free :) And when I say easy, I mean really hard if you don't know it's basically React (and I didn't know React). But once you figure it out, it's easy.

    • @TheApeMachine
      @TheApeMachine 3 ปีที่แล้ว

      It was an interesting video though, I had been wondering about this logging stack for a while and if I should chase it. The thing is, Kibana is just too powerful. Like even having unstructured data and being able to structure it on the fly is just everything.

  • @NFvidoJagg2
    @NFvidoJagg2 ปีที่แล้ว

    for the syslog, see if you can point the logs towards a dummy ip address. this way if someone gets into you system, they won't be able to find and mess with the logging server

  • @pantatzz
    @pantatzz 2 ปีที่แล้ว

    Gratefull i found this channel, thanks sir. Greeting from indonesia

  • @gr4yweb
    @gr4yweb 3 ปีที่แล้ว

    Thank you for your video. I enjoyed it very much and I know what I will do when I have some more free time around christmas this year.

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Thank you! Me too!

  • @JasonTurner
    @JasonTurner 3 ปีที่แล้ว

    Great presentation of some solid content! Thanks for sharing!

  • @cpt_Ruckus
    @cpt_Ruckus 3 ปีที่แล้ว +2

    Loki is great, very versatile. Be warned tho if you have limited storage space the loki database can grow in size quick!
    Edit: loki doesn't trim old logs by default.. I only keep logs up to two weeks old. Huge data saver!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +1

      Good tip!

    • @djdubd
      @djdubd 3 ปีที่แล้ว +1

      What config items do you need to set to change the default storage locations? I'm looking at their config reference and having trouble making sense of it

    • @SebastianSastre
      @SebastianSastre ปีที่แล้ว

      This is the first I though when Tim was explaining the setup.

  • @johnconnor7778
    @johnconnor7778 2 ปีที่แล้ว +2

    Awesome video, Tim! Could you share your dashboard config from 0:47? It looks like exactly what I need.

  • @lolikpof
    @lolikpof 7 หลายเดือนก่อน +1

    Can this be used in a closed source commercial product? The AGPL license is concerning. Even though no changes are made to the source code, and it would only be used for internal purposes, section 13 of the license is concerning. The software is a web application, so it would be accessible over a network, and while logs would obviously not be shown to end users, and technically aren't even necessary for the application to work, they are necessary for development and debugging.. Can't figure out whether it can be used in my company or not

  • @mvaldes
    @mvaldes 3 ปีที่แล้ว +1

    i usually do Elasticsearch, i know its heavy in use and maintenance but also plugs into other things like my wiki so its great. Loki does look promising tho.

  • @Nikzww187
    @Nikzww187 3 ปีที่แล้ว

    this tutorial was awesome, appreciate you!

  • @MinhHaiNehehe
    @MinhHaiNehehe 21 วันที่ผ่านมา

    Hi , i would like to say thank you !

  • @halo64654
    @halo64654 2 หลายเดือนก่อน +2

    Your documentation (as far as copy & pasting goes) does not work anymore. Docker containers will not be able to find directories, or run without root, and will be stuck in a restart loop.

  • @lucianopacione8755
    @lucianopacione8755 ปีที่แล้ว +1

    Hi! Before all, amazing video!!
    But, I'm having an issue when I try to do the first query, I see "No logs volume available". I already checked /ready and /metrics and looks good. Do you know which can be the problem?
    Thanks a lot

    • @udaydito721
      @udaydito721 18 วันที่ผ่านมา

      Hi, is this fixed?
      I'm also facing similar issue
      Thanks,

  • @tyaprak
    @tyaprak 3 ปีที่แล้ว

    I love grep, awk, wc, uniq and sort commands :)

  • @smeuse
    @smeuse 3 ปีที่แล้ว +3

    Used graylog for a while, hated it. This looks much nicer, going to give it a whirl. Currently just aggregating into a rsyslog server with some scripts to compress and logrotate.

  • @AshishGupta-oc2cz
    @AshishGupta-oc2cz 2 ปีที่แล้ว

    Very Nicely Explained, keep it up.

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว

      Glad you liked it

  • @b9944236
    @b9944236 ปีที่แล้ว

    Great explanation, thanks a lot.

  • @mohamedaly4101
    @mohamedaly4101 2 ปีที่แล้ว

    Great video. Thanks for putting this info out. I will use it to monitor my home network. QQ on syslog, once I place the configuration in the yaml file, I dnt need to use something like rsyslog on a server to listen to the syslog and forward it to promtail? I can send the my syslog directly to promtail container on port 1514?

  • @ameenjohnson1061
    @ameenjohnson1061 3 ปีที่แล้ว +2

    Great video! I installed grafana, prometheus, loki and promtail on my Proxmox host and I am really liking it. One question: is there an easy way to get promtail to get logs from my Proxmox LXC containers and VMs? Or do I need to install promtail into each LXC/VM in order to get the logs into loki?

    • @reyastaroth
      @reyastaroth ปีที่แล้ว +1

      Hello, I have LXC containers (15) with dockers running inside, have you found a way to monitor them without installing the agent on all of them?

  • @project_mini_hero
    @project_mini_hero 4 หลายเดือนก่อน

    Hey Tim, great content as per usual!! I just saw your video and been struggling to set up logging from a firewall with this especially since promtail will be deprecated next year and they are switching to alloy. I wanted to know what are you using today in 2024 and if your still use this setup, have you migrated to alloy instead ?

  • @sethalump
    @sethalump 2 ปีที่แล้ว

    Thanks for these excellent walk throughs. It's not easy to cover this level of stuff and still be interesting to watch.

  • @elmoustaphamalick9925
    @elmoustaphamalick9925 24 วันที่ผ่านมา

    Thanks man you made my day :)

  • @uzairnizamuddin1837
    @uzairnizamuddin1837 2 ปีที่แล้ว +1

    I would like to reach a position where my ctrl and enter breaks. How can I do it?

  • @ThorstenS-linux
    @ThorstenS-linux 3 ปีที่แล้ว

    really nice content dude!

  • @raymondvanderwerf
    @raymondvanderwerf 3 ปีที่แล้ว

    Pfff ...this is great!! 😀
    Thx man! Will definitely have a play with this! ✌️

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Hope you enjoy it!

  • @bladrbrettel6511
    @bladrbrettel6511 2 ปีที่แล้ว +1

    Hey Tim, great tutorial I had a bit of difficulty to set it up on my synology NAS, case, je deamon.json is not located in /etc/docker...
    it's in /var/packages/Docker/etc wich is a siimlink to /volume1/@appconf/Docker
    and second diff it's not named daemon.json but dockerd.json...
    this may help people using their Synology NAS to host a few apps ;)

  • @grunkasvunka2988
    @grunkasvunka2988 2 หลายเดือนก่อน

    Awesome video!

  • @mahabubulhasan7827
    @mahabubulhasan7827 ปีที่แล้ว

    Thanks, great explanation indeed

  • @fasooly1992
    @fasooly1992 ปีที่แล้ว

    Is there a video on how to set up the dashboard?

  • @abdulrahmanmohammed1382
    @abdulrahmanmohammed1382 ปีที่แล้ว

    Awesome video @TechnoTim . Around the 15:24 mark, he was talking about how you would usually check Docker logs then scrolled down his container names, how did he do that? I'm assuming it is a particular shell, maybe? Anyone knows?

    • @TechnoTim
      @TechnoTim  ปีที่แล้ว

      I am using zsh with oh-my-zsh and the docker plugin enabled. Search my website for zsh. I have examples.

  • @michaelcooper5490
    @michaelcooper5490 ปีที่แล้ว

    Hey Tim, Love the video great job, How would this apply to the Raspberry Pi/Orange Pi/Rock Pi? Thanks for your hard work. Can it be installed on RPi 4 or the others I mentioned above?

  • @squalazzo
    @squalazzo 3 ปีที่แล้ว +2

    excellent, man! We are evaluating right now a custom logging solution as the ones offered by major cloud providers are quite expensive... alternatives would have been an ELK stack, or something preconfigured as graylog... what do you think? Thanks

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +1

      really depends on your infra! This is great for cloud, containers, kuerbernetes, and even traditional syslog. If you are already sing grafana that's a plus too!

  • @majorgear1021
    @majorgear1021 ปีที่แล้ว

    I got this working well for standard logs . I'm curious if I can send other logs, like from ansible pull or from application that I write, to promtail as well.
    Google wasn't useful for answering this question, so maybe I'll hit up reddit and Grafana forums.

  • @alfrye68
    @alfrye68 ปีที่แล้ว

    Great tutorial!!! Is is difficult to get logs out of loki without Granfana Dashboard.

  • @alexandrumaer
    @alexandrumaer 3 ปีที่แล้ว

    Tried Loki, because it's easy to correlate it with Jaeger so you could check out traces based on trace ids found in logs. But to have advanced features on your logs, there's nothing else like elk+kibana. It only depends on what your needs are. Cheers and thumbs up for your videos ;) keep up the good work!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว

      Good call! Thank you!

  • @joeripelgrims8900
    @joeripelgrims8900 ปีที่แล้ว

    I seem to be missing something with the syslog portion. I set it up with the listening ports. I then went into one of my network devices and pointed it to loki on port 1514. Now what? I don't see anything in grafana indicating that any syslogs are coming in. I must be missing something really basic.

  • @frankihk
    @frankihk ปีที่แล้ว

    Hi , may I know how to add the prometheus , snmp exporter also include in the docker?
    My purpose is monitor linux system, windows system , and network deivce e.g Cisco switch , FortiGate firewall . Thank you

  • @andymok7945
    @andymok7945 2 ปีที่แล้ว

    Can this be done in a VM? I really don't have the time to learn about docker, containers. Thanks.

  • @ramanujadasu1
    @ramanujadasu1 2 ปีที่แล้ว

    Hey, Thanks for providing docker-compose grafana loki setup. Could you please kubernats (using kind) grafana loki yml if possible(for capturing the ISTIO logs)

  • @exact-estimate
    @exact-estimate 2 ปีที่แล้ว

    Great video, just set it up. One question though: Retention, what are the limits, and where can you set them to stop it taking up all the space on my host?!

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว

      Log retention is configurable

  • @enriquealmanza8964
    @enriquealmanza8964 2 ปีที่แล้ว

    Thanks! great video! what would be the blog for doing it on kubernetes? Thanks!

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว

      Thank you! It's here docs.technotim.live/posts/grafana-loki-kubernetes/

  • @scottezinn8555
    @scottezinn8555 2 ปีที่แล้ว +1

    Hey Tim - great information in your videos! Through lots of tinkering, I've managed to get k3s, cert-manager, rancher, traefik with tls certs up and running under Proxmox (I backed up my whole server, reformatted with Proxmox, created a VM and restored the server which runs 35+ containers in docker for my homelab). I want to get Grafana Loki but also want the prometheus and alerting too from your monitoring video. It looks like installing monitoring via the marketplace gets charts etc but do you just add loki rather than the loki stack? Adding loki stack seems to add things but there were no charts by default installed. Again, thanks for your awesome work. Your homelab machinery is sweet!

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว +1

      Hi! Thank you! Nice stack! Yeah, if you just want loki and grafana use the lokie stack (I have the commands in my docs) but you can also tailor the helm command if you already have grafana installed. This is probably what you want so that you can use your existing install.

    • @scottezinn8555
      @scottezinn8555 2 ปีที่แล้ว +1

      @@TechnoTim So I installed the Rancher Monitoring package (brought in prometheus and customized grafana), installed standalone grafana and added rancher monitoring prometheus (worked), then installed loki-stack with just loki (with persistent storage), Promtail, and prometheus (could probably use the rancher monitoring one but couldn't figure out how to configure Promtail to use it vs the one it links to) enabled and added loki as a datastore to standalone grafana. Worked! So I have alerts now going to Slack, loki collecting and filtering logs, and grafana to view either prometheus or loki logs. Now just need to add in my Unifi data source and teslamate datastore once those containers are moved from docker-based system to k3s. Now back to the day job...

  • @veasnachea6924
    @veasnachea6924 2 ปีที่แล้ว

    very nice video, well done, thanks.

  • @rajuhs3086
    @rajuhs3086 3 ปีที่แล้ว

    1. Is Loki-Promtail stack suitable for aggregating and shipping logs that are generated at microsecond level?.
    2. When logs are available in multiple files, promtail ships the logs in round robin fashion, spoiling the order of the logs. (Let's say logs generated through rolling file appender fashion).
    Any comments will be helpful.

  • @ThangMinh-ul3cs
    @ThangMinh-ul3cs ปีที่แล้ว

    Hi, I am setting up Grafana, Loki, and Promtail for an upcoming project, and I am using syslog-ng to receive logs from external devices. Can you create a video tutorial on using syslog-ng with Grafana Loki?

  • @pyhoff
    @pyhoff ปีที่แล้ว

    Stupid question, what do you use for SIEM solution in this setup, LOKI is not one or do they plan on it as per github. What would you forward logs to? Graylog or ELK?

  • @timbockhop7223
    @timbockhop7223 2 ปีที่แล้ว

    Hi Tim
    thanks for all the good stuff you create!
    I really would like to log actions on my kids' windows 10 computers (they're 8 yo).
    Just "items" like which program has been started and on google & youtube what was being queried/returned/displayed...
    Do you have an idea how to achieve that?

  • @Chinna_Chintu2023
    @Chinna_Chintu2023 ปีที่แล้ว

    Hi friends,
    Note : logs are from ubuntu server....
    I'm looking for a log retention for 3 months in grafana loki .... How can we extend the retention period from the default 30 days to 90 days ??

  • @MohamadSyahiran-n2r
    @MohamadSyahiran-n2r 11 หลายเดือนก่อน

    Need a tutorial on how to use Grafana Agent with the Grafana Loki

  • @bret44
    @bret44 3 ปีที่แล้ว +1

    This looks nice but a bit of a confusing nightmare to setup. I couldn't get syslog to work the way you outlined, I decided to use rsyslog to a local target in promtail but for some reason it get's angry if there are two local job names. Also the plugin for loki causes the docker container to hang if you attempt to restart it. Assuming I got all this running, I have no idea how to add sensors from remote servers. There must be a simpler way :/. Thanks for the effort though!

    • @TechnoTim
      @TechnoTim  3 ปีที่แล้ว +3

      Thank you. This should work. Be sure you don't have scrape_configs: listed twice! Only once! I should probably add a note to the docs. I did this so you could comment one out and uncomment another but if you uncomment both you end up with a bad config.

    • @bret44
      @bret44 3 ปีที่แล้ว

      @@TechnoTim Thanks! I got it working. I had tried only using scrape_configs just once but apparently it was picky about the syntax (I may have not tabbed over correctly or something). Now, please make a guide on how to add load/temps/Ethernet traffic from remote hosts. :)

  • @prasaddotcom
    @prasaddotcom 2 ปีที่แล้ว

    Hi , I tried to extract logs from mssql server using promtail , loki grafana I window environment, logs are coming to grafana dashboard. Problem here is in logs words are displaying as I n s t a n c e instead of instance. Can you please help with solution to resolve my issue.

  • @kolaythant3554
    @kolaythant3554 ปีที่แล้ว

    let me ask 1 question Loki is possible to connect with old container logs after using docker plugin

  • @dedenapraia
    @dedenapraia 2 ปีที่แล้ว

    Thank you !, Your video really help me get this going !. Does someone know about a grafana dashboard ID to see all containers ?

  • @sammyedu8497
    @sammyedu8497 2 ปีที่แล้ว

    Hey Tim, great tutorial, I had decided on Loki already. Still, I have an issue with how to set up log retention using my Digitalocean space as external storage support, so I'm wondering if you got anything to share on that..?

  • @gjkrisa
    @gjkrisa 2 ปีที่แล้ว

    Yes I want to see how to push pfsense logs and I want to see what a logs dashboard would look like

  • @angelosnm
    @angelosnm 2 ปีที่แล้ว

    Great video Tim as always! How do you add remote docker hosts on the promtail/loki configuration?

    • @TechnoTim
      @TechnoTim  2 ปีที่แล้ว +1

      The same way but then point them to the remote server with promtail to ingest!

  • @reyastaroth
    @reyastaroth ปีที่แล้ว

    Hello, I have LXC containers (15) with dockers running inside, have you found a way to monitor them without installing the agent on all of them?