Marcin
Reputation: 5579
Stackdriver Logging - Log severity levels not reported/received when sent via syslog
It appears that log severity is not being passed to Google Cloud Logging platform via fluentd agent, to reproduce you can try:
Bash:
logger -p user.crit "My log"
or PHP:
php -r "syslog(LOG_CRIT,'My log');"
or Python:
import syslog
syslog.syslog(syslog.LOG_ERR, 'My log')
things are getting passed to Google Logs Viewer as below:
but severity is not being sent across, any ideas why would that be?
Upvotes: 1
Views: 1446
Answers (1)
Marcin
Reputation: 5579
OK, managed to find the solution, here you go:
update your syslog output format under
/etc/rsyslog.confto the following:$template googlelogger,"%syslogseverity-text% %timegenerated% %HOSTNAME% %syslogtag% %msg%\n" $ActionFileDefaultTemplate googleloggerthen update
/etc/google-fluentd/config.d/syslog.conftemplate format:format /^(?<severity>[a-zA-Z]*) (?<time>[^ ]*\s*[^ ]* [^ ]*) (?<host>[^ ]*) (?<service>[a-zA-Z0-9_\/\.\-]*): *(?<message>.*)$/ time_format %b %d %H:%M:%S
make sure to restart both rsyslog and google-fluentd after that severity will be sent to Google Cloud Logging
Upvotes: 2
Related Questions
- How do I set the severity of a stackdriver log entry in python?
- The google-cloud-logging module is not logging to the correct severity filters in StackDriver
- Stackdriver stdout log message severity
- How to log a error to Stackdriver Error Reporting via Stackdriver Logging
- Stackdriver logging misses log entries
- Stackdriver Log Agent - Log Level Irrelevant with Google Cloud Logging Driver for Docker
- How do I set google stackdriver to respect logging severity from kubernetes?
- How to get Error logs to appear in Stack Driver Error Reporting?
- Stackdriver logging not showing proper logs
- Does StackDriver support Syslog protocol?