Post on 11-Aug-2015
Sumo Logic TechChat Webinar Tech Update
Ben Newton, George Gerchow and Vera Chen July 21, 2015
Agenda ! Default Time Zone
! Collector Setup Wizard
! Auto Extract
! Shareable Dashboards
! Interactive Dashboards
! Application for Apache Tomcat
! Application for Docker
! Beta Application for AWS VPC Flow Logs
! Question & Answers
Default Time Zone
Default Time Zone
Time Zone Preference – Default from browser – Change in UI
Impact – Personal setting – All hours/minutes displayed
• Search page • Messages pane • Dashboards • Anomaly Detection
Does Not Impact – Previous scheduled searches or real-time alerts
Collector Setup Wizard
Setup Wizard Updates
Configure collectors and sources: – Apache – Windows IIS – MySQL – Nginx – Varnish – Custom Apps – Local Files
Auto Extract
Auto Extract
JSON Auto Extract – Detect JSON objects automatically – Extract key/value pairs without needing to specify fields in parsing
statements – Specify parameters for specific field extraction Additional Parameters Maxdepth – specify level for flattening JSON Extractarrays – extract elements from flat arrays Use extracted fields later in a query- * | json auto | count by username
Shareable Dashboards
Shareable Dashboards
Share dashboards – URL link – Members of organization – Login required
Interactive Dashboards
Interactive Dashboards
Interactive Dashboards – Forensics – Historical data – Pinpointing exact occurrence of problem – Reporting – Long-term trend analysis
How it works – Populates upon launch – Backfilled data – Additional features
• Time selection • Filtering • Optimization
Application for Apache Tomcat
Application for Apache Tomcat
Provides: – Server operations monitoring – Visibility into website visitor behavior patterns – Overview of Tomcat servlet container – Overview of Garbage collection
Application for Apache Tomcat
Application for Apache Tomcat
Application for Apache Tomcat
Application for Apache Tomcat
Application for Apache Tomcat
Application for Apache Tomcat
Application for Docker
Application for Docker
Provides: – A native collection source for Docker infrastructure – Infrastructure monitoring – Alerting of abnormal container or application behavior – Key metrics and KPI visualizations
• Image usage • Container actions and faults • CPU/Memory/Network statistics
Docker Overview
Docker CPU Performance
Docker Memory Performance
Docker Network Performance
Beta Application for AWS VPC Flow Logs
Beta Application for AWS VPC Flow Logs Uncovers:
– Geographical locations of network traffic – Anomalies of network traffic
Highlights: – Rejected IPs – Source/destination IPs – Flow durations – Actions by minute
And more… Please contact George Gerchow at george@sumologic.com if you have any questions or if you would like to participate in a trial of this Beta Application
Additional New Features
Additional New Features
parseHex Operator Anomaly Detection Updates Keyvalue Auto Extract
Questions & Answers
Sumo Logic Thanks You for Joining!