Fluentd is a data collector, which unifies the data collection and consumption. This integration allows you to use Fluentd to send logs to your Logz.io account.
Fluentd will fetch all existing logs, as it is not able to ignore older logs.
Configure Fluentd
Before you begin, you’ll need: Ruby and ruby-dev 2.1 or higher
Install Fluentd and the Logz.io plugin
gem install fluentd fluent-plugin-logzio
Set up Fluentd
fluentd --setup ./fluent
Configure Fluentd with Logz.io output
Add this code block to your Fluent configuration file (fluent.conf by default).
See the configuration parameters below the code block.👇
<match **>
@type logzio_buffered
endpoint_url https://<<LISTENER-HOST>>:8071?token=<<LOG-SHIPPING-TOKEN>>&type=my_type
output_include_time true
output_include_tags true
http_idle_timeout 10
<buffer>
@type memory
flush_thread_count 4
flush_interval 3s
chunk_limit_size 16m
queue_limit_length 4096
</buffer>
</match>
Parameters
| Parameter | Description |
|---|---|
| endpoint_url | A url composed of your Logz.io region’s listener URL, account token, and log type. Replace <<LISTENER-HOST>> with the host for your region. For example, listener.logz.io if your account is hosted on AWS US East, or listener-nl.logz.io if hosted on Azure West Europe. Replace <<LOG-SHIPPING-TOKEN>> with the token of the account you want to ship to. |
| output_include_time | To add a timestamp to your logs when they’re processed, true (recommended). Otherwise, false. |
| output_include_tags | To add the fluentd tag to logs, true. Otherwise, false. If true, use in combination with output_tags_fieldname. |
| output_tags_fieldname | If output_include_tags is true, sets output tag’s field name. The default is fluentd_tag |
| http_idle_timeout | Time, in seconds, that the HTTP connection will stay open without traffic before timing out. |
Run Fluentd
fluentd -c ./fluent/fluent.conf -vv
Check Logz.io for your logs
Give your logs some time to get from your system to ours, and then open Kibana.
If you still don’t see your logs, see log shipping troubleshooting.