Thanks to visit codestin.com
Credit goes to github.com

Skip to content

ahromis/docker-log-alert

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
alerts
alerts
 
 
graylog
graylog
 
 
tls/syslog
tls/syslog
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

docker-log-alert

This repository is a simple demo to showcase a couple of things using Docker.

  1. Sending logs securely to Graylog using the syslog tcp+tls logging driver
  2. Using Consul and Registrator to monitor services dynamically

Usage

  1. Generate the syslog certs: cd ./docker-log-alert/tls/syslog/ and then run ./gen_certs.sh (follow the prompts)
  2. EXTERNAL_IP=<host IP> docker-compose up -d ... the EXTERNAL_IP is IP or address this is running on. For the client-side Graylog API calls.
  3. Connect to graylog: http://<EXTERNAL_IP>:9001 User: admin Pass: admin
    1. Go to "System/Input" -> "Content Packs" -> "Import Content Pack"
    2. Import the ./docker-log-alert/graylog/content_pack_nginx.json content pack
    3. Under "Content Packs" click on "Web Servers" and then "Apply Content Pack"
  4. cd alerts
  5. export CERT_PATH=$(pwd | sed 's/\/alerts//')
  6. docker-compose up -d
  7. Build the curl script image
    1. From the alerts directory
    2. docker build --rm -t consul-curl .
    3. docker run --rm --net=host consul-curl
  8. Scale the app docker-compose scale app=10
  9. Simulate a failure
    1. cd nginx
    2. echo fail > status or chmod 000 status
  10. In about 20s you should get an alert in Slack
  11. Investigate the error in Graylog by searching for NOT response_status: 200

About

Demo of sending application logs to Graylog using syslog tcp+tls, as well as alerting via Consul

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages