LINUX COLLECTOR DETAILS
ze-fluentd-plugin
Zebrium’s fluentd output plugin sends the logs you collect with Fluentd on Linux to Zebrium for automated Anomaly detection. Our github repository is located here.
Getting Started
Installing
- Get Zebrium API server URL and authentication token from Zebrium.
- Determine what deployment name to use.
- Run the following command in a shell on host:
curl https://raw.githubusercontent.com/zebrium/ze-fluentd-plugin/master/install_collector.sh | ZE_LOG_COLLECTOR_URL=<ZAPI_URL> ZE_LOG_COLLECTOR_TOKEN=<AUTH_TOKEN> ZE_HOST_TAGS="ze_deployment_name=<deployment_name>" /bin/bashZE_LOG_PATHS environment variables can be used to add more log file paths. The default log file paths is:
"/var/log/*.log,/var/log/syslog,/var/log/messages,/var/log/secure"For example, to add app log file at /app1/log/app1.log, you can set the environment variable value to:
"/app1/log/app1.log,/var/log/*.log,/var/log/syslog,/var/log/messages,/var/log/secure"
Configuration
The configuration file for td-agent is at /etc/td-agent/td-agent.conf. The following parameters must be configured for your instance:
| Parameter | Description | Note |
|---|---|---|
| ze_log_collector_url | Zebrium log host URL | Provided by Zebrium once your account has been created. |
| ze_log_collector_token | Authentication token | Provided by Zebrium once your account has been created. |
| path | Log files to read | Both files and file patterns are allowed. Files should be separated by comma. The default value is `"/var/log/*.log,/var/log/syslog,/var/log/messages,/var/log/secure"` </tr> |
| ze_host_tags | Host meta data | This parameter is optional. You can pass meta data in key-value pairs, the format is: "key1=value1,key2=value2". We suggest at least set one tag for deployment name: "ze_deployment_name= |