2. About Me
3.5 years with KMK (Liputan6, BBM,
Vidio). In the last 2 years working on
Logging Infrastructure for BBM.
On the last Google Cloud Summit Jakarta
(Oct, 2018), I gave a presentation entitled
"Logging at Petabytes scale on GCP"
Starting this month (Apr 2019), I have
been joining at Bukalapak. I am working
on migration Bukalapak logging
infrastructure to GCP
3. Searching on your logs, is usually just a simple
steps like this
ssh admin@192.168.1.101
cd /var/log/
grep "something interesting" app.log
4. Then your user base is growth significantly...
And now you have more servers.
ssh admin@192.168.1.101
cd /var/log/
grep "something interesting" app.log
ssh admin@192.168.1.102
cd /var/log/
grep "something interesting" app.log
9. Common Usage of Logs
● Debugging
● Source of Metrics/Monitoring
● Audit tracking
10. Centralized Logs Server
● Logs is indexed, searching on your logs should be fast
● Easy to aggregate search result
● Easy to create data visualization (trending over time, spot anomali traffic,
comparing current data with previous time windows)
● Role based access control
● Scalable (horizontal/vertical)
15. Everyone should have an access to your logging tools
● Everyone should know how to search their logs (i.e learn query DSL)
● Minimize Silo
● Team is not too dependent on other teams
● Security and personal data protection still applied