Upgrade to Pro — share decks privately, control downloads, hide ads and more …

How to scale a Logging Infrastructure

Avatar for Paul Stack Paul Stack
June 03, 2015
Technology
0
180

How to scale a Logging Infrastructure

Logging infrastructure using ELK + Kafka

Avatar for Paul Stack

Paul Stack

June 03, 2015
Tweet

More Decks by Paul Stack

See All by Paul Stack
Infrastructure as Software
Avatar for Paul Stack stack72
0
72
Mirror, Mirror on the way, what is the vainest metric of them all?
Avatar for Paul Stack stack72
1
2.3k
Continuously Delivering Infrastructure to the Cloud
Avatar for Paul Stack stack72
0
190
DevOops 2016
Avatar for Paul Stack stack72
0
120
The Quest for Infrastructure Management 2.0
Avatar for Paul Stack stack72
0
140
The Biggest Trick Consultants Ever Pulled was Telling The World Continuous Delivery is Easy
Avatar for Paul Stack stack72
1
120
The Transition from Product to Infrastructure
Avatar for Paul Stack stack72
0
62
Continuous Delivery - the missing parts
Avatar for Paul Stack stack72
0
960
Windows: Having its ass kicked by puppet and powershell
Avatar for Paul Stack stack72
0
140

Other Decks in Technology

See All in Technology
いかにして命令の入れ替わりについて心配するのをやめ、メモリモデルを 愛するようになったか(改)
Avatar for Takaya Saeki nullpo_head
7
2.6k
生成AI時代におけるAI・機械学習技術を用いたプロダクト開発の深化と進化 #BetAIDay
Avatar for LayerX layerx
PRO
1
1.2k
Agent Development Kitで始める生成 AI エージェント実践開発
Avatar for danishi danishi
0
150
【CEDEC2025】『Shadowverse: Worlds Beyond』二度目のDCG開発でゲームをリデザインする~遊びやすさと競技性の両立~
Avatar for Cygames cygames
PRO
1
370
金融サービスにおける高速な価値提供とAIの役割 #BetAIDay
Avatar for LayerX layerx
PRO
1
830
10年以上続くプロダクトで今取り組んでること、取り組もうとしていること
Avatar for SansanTech sansantech
PRO
2
110
テストを実行してSorbetのsigを書こう!
Avatar for SansanTech sansantech
PRO
1
100
Lambda management with ecspresso and Terraform
Avatar for Michael H. Oshita ijin
2
160
Foundation Model × VisionKit で実現するローカル OCR
Avatar for SansanTech sansantech
PRO
1
370
AIに目を奪われすぎて、周りの困っている人間が見えなくなっていませんか?
Avatar for an cap120
1
640
Jamf Connect ZTNAとMDMで実現! 金融ベンチャーにおける「デバイストラスト」実例と軌跡 / Kyash Device Trust
Avatar for Jun Watanabe rela1470
1
200
アカデミーキャンプ 2025 SuuuuuuMMeR「燃えろ!!ロボコン」 / Academy Camp 2025 SuuuuuuMMeR "Burn the Spirit, Robocon!!" DAY 1
Avatar for Kenji Saito ks91
PRO
0
150

Featured

See All Featured
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
431
65k
ReactJS: Keep Simple. Everything can be a component!
Avatar for Pedro Nauck pedronauck
667
120k
YesSQL, Process and Tooling at Scale
Avatar for Rocio Delgado rocio
173
14k
Dealing with People You Can't Stand - Big Design 2015
Avatar for Cassini Nazir cassininazir
367
26k
jQuery: Nuts, Bolts and Bling
Avatar for Doug Neiner dougneiner
63
7.8k
Scaling GitHub
Avatar for Zach Holman holman
461
140k
Making Projects Easy
Avatar for Brett Harned brettharned
117
6.3k
BBQ
Avatar for Matthew Crist matthewcrist
89
9.8k
Thoughts on Productivity
Avatar for Jon Yablonski jonyablonski
69
4.8k
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
301
51k
Testing 201, or: Great Expectations
Avatar for Joseph Mastey jmmastey
45
7.6k
Designing for humans not robots
Avatar for Tammie Lister tammielis
253
25k

Transcript

  1. How do you scale a logging infrastructure to accept a

    billion messages a day? Paul Stack http://twitter.com/stack72 mail: [email protected]

  2. About Me Infrastructure Engineer for a cool startup :) Reformed

    ASP.NET / C# Developer DevOps Extremist Conference Junkie

  3. Background Project was to replace the legacy ‘logging solution’

  4. Iteration 0: A Developer created a single box with the

    ELK all in 1 jar

  5. Time to make it production ready now

  6. None

  7. Iteration 1: Using Redis as the input mechanism for LogStash

  8. None
  9. None

  10. Enter Apache Kafka

  11. “Kafka is a distributed publish- subscribe messaging system that is

    designed to be fast, scalable, and durable” Source: Cloudera Blog

  12. Introduction to Kafka • Kafka is made up of ‘topics’,

    ‘producers’, ‘consumers’ and ‘brokers’ • Communication is via TCP • Backed by Zookeeper

  13. Kafka Topics Source: http://kafka.apache.org/documentation.html

  14. Kafka Producers • Producers are responsible to chose what topic

    to publish data to • The producer is responsible for choosing a partition to write to • Can be handled round robin or partition functions

  15. Kafka Consumers • Consumption can be done via: • queuing

    • pub-sub

  16. Kafka Consumers • Kafka consumer group • Strong ordering

  17. Kafka Consumers • Strong ordering

  18. https://github.com/opentable/puppet-exhibitor

  19. None

  20. Iteration 2 Introduction of Kafka

  21. None
  22. None

  23. Iteration 3 Further ‘Improvements’ to the cluster layout

  24. None

  25. The Numbers • Logs kept in ES for 30 days

    then archived • 12 billion documents active in ES • ES space was about 25 - 30TB in EBS volumes • Average Doc Size ~ 1.2KB • V-Day 2015: ~750M docs collected without failure

  26. What about metrics and monitoring?

  27. Monitoring - Nagios • Alerts on • ES Cluster •

    zK and Kafka Nodes • Logstash / Redis nodes
  28. None

  29. https://github.com/stack72/nagios-elasticsearch

  30. Metrics - Kafka Offset Monitor

  31. https://github.com/opentable/KafkaOffsetMonitor

  32. Metrics - ElasticSearch

  33. None
  34. None
  35. None

  36. Visibility Rocks!

  37. None

  38. So what would I do differently?

  39. Questions?

  40. Paul Stack @stack72