KubeCon 2019: Elastic Doubles Down on Observability and Orchestration for Kubernetes

As users adopt Kubernetes, Elastic products move fast to support their evolving needs. Whether you are trying to run Elasticsearch workloads to Kubernetes or want to gain better visibility into container workloads running across different environments, we are doubling down on building cloud native tools to support these efforts. This blog covers recent advancements to support Kubernetes initiatives:


Monitoring with Logs: Deriving Metrics from AWS FireLens, Splunk, and Logstash

End-to-End Observability with Metrics, Traces, and Logs At SignalFx, we’re on a mission to be the leader in enterprise-grade, end-to-end real-time Observability. We already are pioneers in real-time monitoring where we lead the industry in alerting and troubleshooting off of metric and trace data, two of the three pillars of Observability. We also leverage log data for root cause analysis via contextual deep linking into Splunk and other log analytics tools.


14 Kibana Plugins to Spice Up Your Data Visualizations

Kibana is a powerful visualization platform designed specifically for log management with Elasticsearch. It already provides a lot built-in, but its open-source nature obviously lends it to some pretty cool simple and complicated additions from its community of devs. Some favorites include adding certain kinds of visualizations, API attachments, better integration between Kibana and other platforms, as well simple add-ons for flair in reports.


Elastic SIEM for home and small business: GeoIP data and Beats config review

Hey, there. This is part three of the Elastic SIEM for home and small business blog series. In the Getting started blog, we created our Elasticsearch Service deployment and started collecting data from one of our computers using Winlogbeat. In the Securing cluster access blog, we secured access to our cluster by restricting privileges for users and Beats. If you haven’t read the first and second blogs, you may want to before going any further.


Monitor Cloud Run for Anthos with Sumo Logic

Cloud Run for Anthos allows you to run stateless containers on Anthos GKE on Google Cloud, on-premises and multi-cloud environments. Cloud Run is serverless: it enables you to run requests or event-driven stateless workloads without having to worry about servers. It abstracts away all infrastructure management such as provisioning, configuring, and managing servers, so you focus only on writing code.


Splunk Connect for Syslog: Turnkey and Scalable Syslog GDI - Part 1

In my 8+ years here at Splunk, some questions from customers and the Splunk professional community are repeatedly asked year after year, and questions around syslog data and how to onboard it properly is a prime example. A key question that “refuses to die” is: As an Admin, how do I easily ingest syslog data, at scale, while removing the requirement of up-front design work and “syslog-fu”?


Splunk Connect for Syslog: Turnkey and Scalable Syslog GDI - Part 2

In part 1 of this series, we explored the design philosophy behind Splunk Connect for Syslog (SC4S), the goals of the design, and the new HEC-based transport architecture. In this installment, we'll cover the high-level configuration of SC4S and highlight relevant sections of the documentation that provides the details needed for deployment in a production environment.


Understanding Log Management: Issues and Challenges

In order to fully understand all the log management issues that can occur, we must first take a step back in order to provide a detailed examination of what log handling is and what it entails. Log messages - which are also known as event logs, audit records, and audit trails, to name a few of their other commonly used names – are events as they pertain to computing. These are generated or triggered by the software or the user.


Interview with ESL: Transition to microservices & more

ESL, a long time customer of Unomaly has been evolving alongside us. We interviewed them back in 2018 and decided to check in again. Thomas Poehler (Senior VP of IT) and Felix Feinhals (Head Site Reliability Engineer) sat down with us and took us through how they are using Unomaly now and how they see the company continuing to use Unomaly in future.