Outcold Solutions LLC

Monitoring Docker, OpenShift and Kubernetes - Version 5.16

December 14, 2020

The most major feature of this release is self monitoring of Collectord. With the metrics, published to Splunk from Collectord you can easily monitor performance of the logging pipeline, and Splunk HEC input. We have included a lot of small bug fixes and usability improvements in this release as well.

Collectord Metrics

Collectord publishes metrics for connections to Splunk, how long the requests take, how big is the lag for the events sent in every batch and many more. Now you can easily find if your Splunk HEC is not performant enought for accepting the number of logs sent from your clusters.

Collectord Metrics

To see data on this dashboard, make sure to update your configuration for OpenShift and Kubernetes and include input input.collectord_metrics.

Those metrics also can be exported in Prometheus format. For that you need to enable httpServerBinding under [general] and metrics will be available under path /metrics/prometheus.

More annotations for Prometheus inputs

With annotations for prometheus metrics collecting you can configure caname of the certificate and include various Authorization headers.

New configurations

You can filter host file (input.files and input.journald) logs, include the blacklist and whitelist patterns to reduce the number of logs from chatty hosts.

# Blacklisting and whitelisting the logs
# whitelist = ^regexp$
# blacklist = ^regexp$

You can find more information about other minor updates by following links below.

Release notes

Upgrade instructions

Installation instructions

docker, kubernetes, openshift, splunk

About Outcold Solutions

Outcold Solutions provides solutions for monitoring Kubernetes, OpenShift and Docker clusters in Splunk Enterprise and Splunk Cloud. We offer certified Splunk applications, which give you insights across all containers environments. We are helping businesses reduce complexity related to logging and monitoring by providing easy-to-use and deploy solutions for Linux and Windows containers. We deliver applications, which help developers monitor their applications and operators to keep their clusters healthy. With the power of Splunk Enterprise and Splunk Cloud, we offer one solution to help you keep all the metrics and logs in one place, allowing you to quickly address complex questions on container performance.