Windows Operating System
Send your Windows machine logs and metrics using OpenTelemetry service
note
For a much easier and more efficient way to collect and send metrics, consider using the Logz.io telemetry collector.
Create a Logz.io directory:
New-Item -Path $env:APPDATA\LogzioAgent -ItemType Directory -Force
Download OpenTelemetry tar.gz:
Invoke-WebRequest -Uri "https://github.com/logzio/otel-collector-distro/releases/download/v0.82.0/otelcol-logzio-windows_amd64.zip" -OutFile C:\Users\<<USERNAME>>\Downloads\otelcol-logzio.zip
Extract the OpenTelemetry binary:
Expand-Archive -LiteralPath C:\Users\<<USERNAME>>\Downloads\otelcol-logzio.zip -DestinationPath $env:APPDATA\LogzioAgent -Force
Create the OpenTelemetry config file:
New-Item -Path $env:APPDATA\LogzioAgent\otel_config.yaml -ItemType File -Force
And copy the following OpenTelemetry content into the config file.
Replace <<LOG-SHIPPING-TOKEN>>, <<LISTENER-HOST>>, and <<PROMETHEUS-METRICS-SHIPPING-TOKEN>> with the relevant parameters from your Logz.io account.
receivers:
windowseventlog/application/localhost_windows_system:
channel: Application
exclude_providers:
- LogzioOTELCollector
attributes:
type: agent-windows
windowseventlog/security/localhost_windows_system:
channel: Security
attributes:
type: agent-windows
windowseventlog/system/localhost_windows_system:
channel: System
attributes:
type: agent-windows
hostmetrics/localhost_windows_system:
collection_interval: 15s
scrapers:
cpu:
metrics:
system.cpu.utilization:
enabled: true
disk:
load:
filesystem:
memory:
metrics:
system.memory.utilization:
enabled: true
network:
paging:
process:
mute_process_name_error: true
mute_process_exe_error: true
mute_process_io_error: true
processors:
resourcedetection/system:
detectors: ["system"]
system:
hostname_sources: ["os"]
filter:
metrics:
include:
match_type: strict
metric_names: ["system.cpu.time", "system.cpu.load_average.1m", "system.cpu.load_average.5m", "system.cpu.load_average.15m", "system.cpu.utilization", "system.memory.usage", "system.memory.utilization", "system.filesystem.usage", "system.disk.io", "system.disk.io_time", "system.disk.operation_time", "system.network.connections", "system.network.io", "system.network.packets", "system.network.errors", "process.cpu.time", "process.memory.usage", "process.disk.io", "process.memory.usage", "process.memory.virtual"]
exporters:
logging:
logzio/logs:
account_token: <<LOG-SHIPPING-TOKEN>>
region: us
prometheusremotewrite:
endpoint: https://<<LISTENER-HOST>>:8053
headers:
Authorization: Bearer <<PROMETHEUS-METRICS-SHIPPING-TOKEN>>
resource_to_telemetry_conversion:
enabled: true
target_info:
enabled: false
service:
pipelines:
logs:
receivers:
- windowseventlog/application/localhost_windows_system
- windowseventlog/security/localhost_windows_system
- windowseventlog/system/localhost_windows_system
processors:
- resourcedetection/system
exporters: [logzio/logs]
metrics:
receivers:
- hostmetrics/localhost_windows_system
processors:
- resourcedetection/system
- filter
exporters: [prometheusremotewrite]
telemetry:
logs:
level: "debug"
metrics:
address: localhost:8888
Important
If you already running OpenTelemetry metrics on port 8888, you will need to edit the address field in the config file.
Next, create the service file:
New-Service -Name LogzioOTELCollector -BinaryPathName "$env:APPDATA\LogzioAgent\otelcol-logzio-windows_amd64.exe --config $env:APPDATA\LogzioAgent\otel_config.yaml" -Description "Collects localhost logs/metrics and sends them to Logz.io."
Manage your OpenTelemetry on Localhost
| Description | Command |
|---|---|
| Start service | Start-Service -Name LogzioOTELCollector |
| Stop service | Stop-Service -Name LogzioOTELCollector |
| Service logs | eventvwr.msc |
| Delete service | Stop-Service -Name LogzioOTELCollector sc.exe DELETE LogzioOTELCollector |