Reduce Overage Costs & Improve App/Infra Health using vRealize Log Insight Cloud

September 18, 2022 RAGHU VMware 0

PAGE CONTENTS
Preamble
Assumption
Goal
Step-by-Step Guide

Preamble : Modern World Infrastructure/Line of Business Apps have been designed to be resilient by default. These Infra/Apps have built-in fault tolerance at varied levels, could be at different tiers such as app,n/w,infra etc. We often fail to understand that it is a very THIN LINE between a Disaster and App being Highly-Available. These Infra/Apps have intelligent logging by default. Most Apt Solution to visualize logs, which produce actionable insights to ensure Health of Infra/Apps & Keep Overage Costs at bay is “vRealize Log Insight Cloud”

Assumptions

  • Access to vRealize Log Insight Cloud
  • vSphere Integration : In-place

Goal: Identify potential issues that threaten your Infrastructure/Applications/LOB Availability & Reliability.

Step-by-Step Guide

  1. Log in to VMware Cloud Services. Launch Service : vRealize Log Insight Cloud
  2. On the left-hand side Pane, Click on Explore Logs
  3. Click on  CUSTOM   & choose LATEST 48 HOURS (Any time reference of your choice)

  4. In the Chart Area click on over time
  5. Click on Non-Time Series Group by Hostname

  6. With the above actions, you will see the Top 30-40 hosts that are generating a large volume of logs. This is a point of concern, which needs to be analyzed. Let us pick a “Top Host” that is generating the highest volume of logs relative to other hosts.
  7. As shown in the screenshot below, Click on Hostname Field on the bottom-right-hand side. Click on the + icon against the hostname with 143 million logs (It will be different for you).
  8. Now you have a Data Driven InsightHost that is generating the highest number of logs. Now it is useful if we know, what are the types of logs that are high in number. Now click on Types as shown in the screenshot below.

  9. Now take a close look at the screenshot and highlighted the information in the blue circle.
  10. vRealize Log Insight Cloud summarizes by grouping similar types of events using Machine Learning. This is a distinct advantage that helps in identifying highest & lowest types of events, both which are very critical for troubleshooting. 
  11. Now we have following “Data-Driven Actionable Insights” :
    1. Highest Log generating host
    2. Similar type of events grouped together which are sorted in highest-lowest.
  12. We can analyse the above logs and perform Root Cause Analysis, resolve ongoing issues. Which essentially brings down the number of logs.
  13. Less number of logs means less ingestion. Less ingestion helps you keep your Log Ingestion Overage Costs at Bay.
  14.   Now you are in Next Phase of being Pro-Active . Congratulations !