SlideShare uma empresa Scribd logo

Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With Elastic Stack | On Premises vs SaaS Elastic Stack Comparisons.

Tyler Nguyen
Tyler Nguyen

We will have a deep view of the Elastic Stack - which is the next evolution of ELK Stack, learn how to build the powerful log analysis system with Elastic Stack and have an overview of specifications and comparison details between the self-managed cluster vs Elastic stack provided as SaaS from cloud providers.

Tecnologia
1 de 31
DEEP DIVE INTO ELASTICSEARCH Establish A Powerful Log Analysis System With Elastic Stack. On Premises vs SaaS Elastic Stack Comparisons. Tyler DevOps Engineer NFQ Asia Company
Agenda • Intro. • Overview: Elastic Stack. • Establish a powerful log analysis system with Elastic Stack. • Elastic stack options from cloud providers. • Which one would be fit for us? • Cost Reflections. • In conclusion.
About Me • In tech for 7+ years. • Technical Project Coordinator @ AVASO Technology Solutions. • Infrastructure Technical Lead @ Betfair Group PLC. • DevOps Engineer @ NFQ Asia. • Member of Vietnam Elasticsearch Community. • Bash/PowerShell languages. • A dog parent :D
About NFQ Asia • Member of NFQ Company. • 15+ years’ experience in e-business strategy and software development • 300+ professionals. • 4 countries: offices in Lithuania, Germany, Vietnam, Singapore. • Founded in Vietnam since 2015. • Having organized 5 community events/hackathons in Vietnam.
DATA Cost Operations Features Platforms Plugins Capability Mapping Processors Aggregations APIs Monitoring Security Encryption Supports Backup Database Searching Analytics ComplexityArchitecture APIsFlexibility Availability Compatibility Centralization
Elasticsearch is everywhere
What is Elastic Stack? • Formerly known as ELK Stack. • ELK - The acronym for three open source projects: elasticsearch, logstash, and kibana. • Distributed, scalable, and highly available (both on premises or SaaS). • The Elastic Stack is the next evolution of ELK. • Supports the lightweight Beats data shippers from ES v2.1.1.
Elasticsearch • “You know, for Search” • Free, Open Source. • Search engine based on Lucene. • Near real-time searching, analytics and visualization capabilities. • Sophisticated Restful API.
Logstash • Open source data collection engine that unifies data from disparate sources, normalizes it and distributes it. • The ingestion workhorse for elasticsearch and more. • Real-time capabilities and pluggable pipeline architecture. • Community-extensible and developer-friendly plugin ecosystem.
Kibana • Open source analytics and visualization platform designed to work with elasticsearch. • Specialized for large volumes of streaming and real-time data. • No code, no additional infrastructure required. • Easily and quickly understandable through graphic representation.
Beats Platform • “Data shippers” that are installed on servers as agents. • Either elasticsearch directly or through logstash. • Library written based on Golang. • Supports create your own beat for specific use cases.
ESTABLISH A POWERFUL LOG ANALYSIS SYSTEM WITH ELASTIC STACK
Rationale • What is log? • How do we solve the production issue as usual? • How much time do you spend investigating the production issue? • Where are the archived log? • Visualization and dashboards?
The Challenge How do you satisfy the search needs of the application system’s over 2,000 docs per second while simultaneously providing tactical operational insights that help both Development Team and Operation Team iteratively improve the customer experience?
The Simple Log Analysis Diagram
Demonstration
Scalability Rationale • High availability. • Petabyte-scale data is written and/or read frequently. • High scalability. • Sufficient data allocation. • Costs.
The Elasticsearch Hot-Warm Architecture
The Elasticsearch Hot-Warm Architecture (cont.)
ON PREMISES VS SaaS ELASTIC STACK COMPARISONS
WHAT IS AWS ELASTICSEARCH SERVICE? • Managed service in AWS Cloud. • Introduced in Oct 2015. • Fully managed; Zero admin. • Highly available and reliable. • Built-in Kibana support. • Integrated with other services in AWS ecosystem.
The AWS Integration
What is Elastic Cloud? • Launched in Oct 2015. • Provided by Elastic. • High provisioning and scaling. • Hosted in the Cloud Providers. • Service-oriented architecture. • Containerization using Docker. • Fully supports custom plugins and API.
Elastic Cloud Architecture
HOW DO I KNOW WHICH ONE IS FIT WITH ME?
Specifications comparison sheet Self-managed Elastic Stack AWS Elasticsearch Service Elastic Cloud Enterprise Pros More options and features. Complete control settings and capacity. Access to other APIs Comprehensive ES monitoring solutions. Lowest costs. SaaS. Simplify the operations via APIs. Security by IAM. Automated snapshots*. Encryption at rest. Monitoring included*. Technical supported. SaaS. Fully control through APIs. Technical Supported. Uptime SLA. Feature-rich and complete monitoring product. Available on Marketplace. Cons Self maintenance. Infrastructure matters. No technical supported. X-Pack limit features. Limited control. Less capacity and scalability. Backup once time per day. No plugins, no logs. Medium expensive. Only support I2 series EC2 instances. Most expensive. Imperfect for AWS-hosted solutions.
Costs Comparison Chart 8,400.38 10,678.56 11,512.51 75,303.17 81,375.17 11,316.98 14,500.26 25,201.1525,201.15 32,035.68 34,537.54 203,318.55 219,712.95 28,319.95 38,295.63 50,402.30 0 50,000 100,000 150,000 200,000 250,000 Elastic Stack (AWS) Elastic Stack (GCP) AWS Elasticsearch Services Elastic Cloud (GCP) Elastic Cloud (AWS) Cost($) Service Models One Year One Year (All Upfront) Three Years Three Years (All Upfront) *Costs calculated based on 3TB-data cluster in multi-AZ in Frankfurt region
In Conclusion • Elasticsearch leverage the power of analysis ability for both Dev/Ops teams. • Easily operate/maintain the huge cluster of servers and microservices. • Choose the proper architecture depend on application/system. • Estimate the budget to meet the requirements. • Optimize the aggregation to adopt the resources. • High availability oriented system.
We are hiring… • Java Senior/Lead Developer • PHP Senior Developer • PHP Technical Lead • Front-end Senior Developer • Front-end Technical Lead • Technical Project Manager Simply send us an email with your enclosed updated CV to: career@nfq.asia
Contact Me LinkedIn: linkedin.com/in/tylernguyen91 Email: tai.nguyen@nfq.asia Telegram: @tylern91

Recomendados

Monitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
Monitor Azure Kubernetes Cluster With Prometheus by Mamta JhaMonitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
Monitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
CodeOps Technologies LLP
 
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Lucas Jellema
 
WSO2Con USA 2017: Building an Effective API Architecture
WSO2Con USA 2017: Building an Effective API ArchitectureWSO2Con USA 2017: Building an Effective API Architecture
WSO2Con USA 2017: Building an Effective API Architecture
WSO2
 
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
Lucas Jellema
 
Cloudtrek Basics Overview
Cloudtrek Basics OverviewCloudtrek Basics Overview
Cloudtrek Basics Overview
Dmitriy Zgoda
 
IoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
IoT and Serverless - AWS - Serverless Summit - Madhusudan ShekarIoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
IoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
CodeOps Technologies LLP
 
The Workshop: Alcanzando una observabilidad unificada con Elastic APM
The Workshop: Alcanzando una observabilidad unificada con Elastic APMThe Workshop: Alcanzando una observabilidad unificada con Elastic APM
The Workshop: Alcanzando una observabilidad unificada con Elastic APM
Elasticsearch
 
Effective AIOps with Open Source Software in a Week
Effective AIOps with Open Source Software in a WeekEffective AIOps with Open Source Software in a Week
Effective AIOps with Open Source Software in a Week
Databricks
 

Recomendados

Monitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
Monitor Azure Kubernetes Cluster With Prometheus by Mamta JhaMonitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
Monitor Azure Kubernetes Cluster With Prometheus by Mamta Jha
CodeOps Technologies LLP
 
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Live Application and Infrastructure Monitoring and Root Cause Log Analysis wi...
Lucas Jellema
 
WSO2Con USA 2017: Building an Effective API Architecture
WSO2Con USA 2017: Building an Effective API ArchitectureWSO2Con USA 2017: Building an Effective API Architecture
WSO2Con USA 2017: Building an Effective API Architecture
WSO2
 
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
50 Shades of Data - how, when and why Big,Relational,NoSQL,Elastic,Event,CQRS...
Lucas Jellema
 
Cloudtrek Basics Overview
Cloudtrek Basics OverviewCloudtrek Basics Overview
Cloudtrek Basics Overview
Dmitriy Zgoda
 
IoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
IoT and Serverless - AWS - Serverless Summit - Madhusudan ShekarIoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
IoT and Serverless - AWS - Serverless Summit - Madhusudan Shekar
CodeOps Technologies LLP
 
The Workshop: Alcanzando una observabilidad unificada con Elastic APM
The Workshop: Alcanzando una observabilidad unificada con Elastic APMThe Workshop: Alcanzando una observabilidad unificada con Elastic APM
The Workshop: Alcanzando una observabilidad unificada con Elastic APM
Elasticsearch
 
Effective AIOps with Open Source Software in a Week
Effective AIOps with Open Source Software in a WeekEffective AIOps with Open Source Software in a Week
Effective AIOps with Open Source Software in a Week
Databricks
 
Project Sherpa: How RightScale Went All in on Docker
Project Sherpa: How RightScale Went All in on DockerProject Sherpa: How RightScale Went All in on Docker
Project Sherpa: How RightScale Went All in on Docker
RightScale
 
Reducing MTTR and False Escalations: Event Correlation at LinkedIn
Reducing MTTR and False Escalations: Event Correlation at LinkedInReducing MTTR and False Escalations: Event Correlation at LinkedIn
Reducing MTTR and False Escalations: Event Correlation at LinkedIn
Michael Kehoe
 
Opening the Outage Door: Integrating OMS into CIS
Opening the Outage Door: Integrating OMS into CISOpening the Outage Door: Integrating OMS into CIS
Opening the Outage Door: Integrating OMS into CIS
SSP Innovations
 
[Webinar] AWS Monitoring with Site24x7
[Webinar] AWS Monitoring with Site24x7[Webinar] AWS Monitoring with Site24x7
[Webinar] AWS Monitoring with Site24x7
Site24x7
 
Azure Application insights - An Introduction
Azure Application insights - An IntroductionAzure Application insights - An Introduction
Azure Application insights - An Introduction
Matthias Güntert
 
SharePoint best practices
SharePoint best practicesSharePoint best practices
SharePoint best practices
Dinusha Kumarasiri
 
Hands on Lab: Windows Workloads - AWS Online Tech Talks
Hands on Lab: Windows Workloads - AWS Online Tech TalksHands on Lab: Windows Workloads - AWS Online Tech Talks
Hands on Lab: Windows Workloads - AWS Online Tech Talks
Amazon Web Services
 
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedInCouchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
Michael Kehoe
 
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
Michael Kehoe
 
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale
 
SignalR 101
SignalR 101SignalR 101
SignalR 101
John Patrick Oliveros
 
GAB 2017 - Logic Apps and Azure Functions
GAB 2017 - Logic Apps and Azure FunctionsGAB 2017 - Logic Apps and Azure Functions
GAB 2017 - Logic Apps and Azure Functions
Wagner Silveira
 
Monitoring Containerized Application in Alibaba Cloud
Monitoring Containerized Application in Alibaba CloudMonitoring Containerized Application in Alibaba Cloud
Monitoring Containerized Application in Alibaba Cloud
gavaskar s
 
Couchbase Connect 2016
Couchbase Connect 2016Couchbase Connect 2016
Couchbase Connect 2016
Michael Kehoe
 
Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service
RightScale
 
Mastering Azure Monitor
Mastering Azure MonitorMastering Azure Monitor
Mastering Azure Monitor
Richard Conway
 
David Max SATURN 2018 - Migrating from Oracle to Espresso
David Max SATURN 2018 - Migrating from Oracle to EspressoDavid Max SATURN 2018 - Migrating from Oracle to Espresso
David Max SATURN 2018 - Migrating from Oracle to Espresso
David Max
 
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk ChoStateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Redis Labs
 
Master thesis
Master thesisMaster thesis
Master thesis
Fabio Arcidiacono
 
Using SaltStack to Auto Triage and Remediate Production Systems
Using SaltStack to Auto Triage and Remediate Production SystemsUsing SaltStack to Auto Triage and Remediate Production Systems
Using SaltStack to Auto Triage and Remediate Production Systems
Michael Kehoe
 
Nuxeo Platform LTS 2015 Highlights
Nuxeo Platform LTS 2015 HighlightsNuxeo Platform LTS 2015 Highlights
Nuxeo Platform LTS 2015 Highlights
Nuxeo
 
Lessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatternsLessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatterns
Claudiu Barbura
 

Mais conteúdo relacionado

Mais procurados

APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
Michael Kehoe
 
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale
 
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk ChoStateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Redis Labs
 

Mais procurados (20)

Project Sherpa: How RightScale Went All in on Docker
Project Sherpa: How RightScale Went All in on DockerProject Sherpa: How RightScale Went All in on Docker
Project Sherpa: How RightScale Went All in on Docker
 
Reducing MTTR and False Escalations: Event Correlation at LinkedIn
Reducing MTTR and False Escalations: Event Correlation at LinkedInReducing MTTR and False Escalations: Event Correlation at LinkedIn
Reducing MTTR and False Escalations: Event Correlation at LinkedIn
 
Opening the Outage Door: Integrating OMS into CIS
Opening the Outage Door: Integrating OMS into CISOpening the Outage Door: Integrating OMS into CIS
Opening the Outage Door: Integrating OMS into CIS
 
[Webinar] AWS Monitoring with Site24x7
[Webinar] AWS Monitoring with Site24x7[Webinar] AWS Monitoring with Site24x7
[Webinar] AWS Monitoring with Site24x7
 
Azure Application insights - An Introduction
Azure Application insights - An IntroductionAzure Application insights - An Introduction
Azure Application insights - An Introduction
 
SharePoint best practices
SharePoint best practicesSharePoint best practices
SharePoint best practices
 
Hands on Lab: Windows Workloads - AWS Online Tech Talks
Hands on Lab: Windows Workloads - AWS Online Tech TalksHands on Lab: Windows Workloads - AWS Online Tech Talks
Hands on Lab: Windows Workloads - AWS Online Tech Talks
 
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedInCouchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
Couchbase Connect 2016: Monitoring Production Deployments The Tools – LinkedIn
 
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
APRICOT 2017: Trafficshifting: Avoiding Disasters & Improving Performance at ...
 
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
 
SignalR 101
SignalR 101SignalR 101
SignalR 101
 
GAB 2017 - Logic Apps and Azure Functions
GAB 2017 - Logic Apps and Azure FunctionsGAB 2017 - Logic Apps and Azure Functions
GAB 2017 - Logic Apps and Azure Functions
 
Monitoring Containerized Application in Alibaba Cloud
Monitoring Containerized Application in Alibaba CloudMonitoring Containerized Application in Alibaba Cloud
Monitoring Containerized Application in Alibaba Cloud
 
Couchbase Connect 2016
Couchbase Connect 2016Couchbase Connect 2016
Couchbase Connect 2016
 
Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service
 
Mastering Azure Monitor
Mastering Azure MonitorMastering Azure Monitor
Mastering Azure Monitor
 
David Max SATURN 2018 - Migrating from Oracle to Espresso
David Max SATURN 2018 - Migrating from Oracle to EspressoDavid Max SATURN 2018 - Migrating from Oracle to Espresso
David Max SATURN 2018 - Migrating from Oracle to Espresso
 
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk ChoStateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
Stateful Interaction In Serverless Architecture With Redis: Pyounguk Cho
 
Master thesis
Master thesisMaster thesis
Master thesis
 
Using SaltStack to Auto Triage and Remediate Production Systems
Using SaltStack to Auto Triage and Remediate Production SystemsUsing SaltStack to Auto Triage and Remediate Production Systems
Using SaltStack to Auto Triage and Remediate Production Systems
 

Semelhante a Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With Elastic Stack | On Premises vs SaaS Elastic Stack Comparisons.

Lessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatternsLessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatterns
Claudiu Barbura
 
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
confluent
 
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
Amazon Web Services
 
Service quality monitoring system architecture
Service quality monitoring system architectureService quality monitoring system architecture
Service quality monitoring system architecture
Matsuo Sawahashi
 
Geek Sync | Deployment and Management of Complex Azure Environments
Geek Sync | Deployment and Management of Complex Azure EnvironmentsGeek Sync | Deployment and Management of Complex Azure Environments
Geek Sync | Deployment and Management of Complex Azure Environments
IDERA Software
 
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
Lucas Jellema
 

Semelhante a Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With Elastic Stack | On Premises vs SaaS Elastic Stack Comparisons. (20)

Nuxeo Platform LTS 2015 Highlights
Nuxeo Platform LTS 2015 HighlightsNuxeo Platform LTS 2015 Highlights
Nuxeo Platform LTS 2015 Highlights
 
Lessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatternsLessons learned from embedding Cassandra in xPatterns
Lessons learned from embedding Cassandra in xPatterns
 
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
Kafka: Journey from Just Another Software to Being a Critical Part of PayPal ...
 
Rootconf 2017 - State of the Open Source monitoring landscape
Rootconf 2017 - State of the Open Source monitoring landscape Rootconf 2017 - State of the Open Source monitoring landscape
Rootconf 2017 - State of the Open Source monitoring landscape
 
Elk ruminating on logs
Elk ruminating on logsElk ruminating on logs
Elk ruminating on logs
 
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
AWS re:Invent 2016: Accenture Cloud Platform Serverless Journey (ARC202)
 
What's New in IBM Streams V4.1
What's New in IBM Streams V4.1What's New in IBM Streams V4.1
What's New in IBM Streams V4.1
 
AWS re:Invent 2016: The State of Serverless Computing (SVR311)
AWS re:Invent 2016: The State of Serverless Computing (SVR311)AWS re:Invent 2016: The State of Serverless Computing (SVR311)
AWS re:Invent 2016: The State of Serverless Computing (SVR311)
 
First Look at Azure Logic Apps (BAUG)
First Look at Azure Logic Apps (BAUG)First Look at Azure Logic Apps (BAUG)
First Look at Azure Logic Apps (BAUG)
 
Service quality monitoring system architecture
Service quality monitoring system architectureService quality monitoring system architecture
Service quality monitoring system architecture
 
Netflix Cloud Architecture and Open Source
Netflix Cloud Architecture and Open SourceNetflix Cloud Architecture and Open Source
Netflix Cloud Architecture and Open Source
 
The Best of re:invent 2016
The Best of re:invent 2016The Best of re:invent 2016
The Best of re:invent 2016
 
Kubernetes Infra 2.0
Kubernetes Infra 2.0Kubernetes Infra 2.0
Kubernetes Infra 2.0
 
Net Devops Overview
Net Devops OverviewNet Devops Overview
Net Devops Overview
 
(ENT211) Migrating the US Government to the Cloud | AWS re:Invent 2014
(ENT211) Migrating the US Government to the Cloud | AWS re:Invent 2014(ENT211) Migrating the US Government to the Cloud | AWS re:Invent 2014
(ENT211) Migrating the US Government to the Cloud | AWS re:Invent 2014
 
Geek Sync | Deployment and Management of Complex Azure Environments
Geek Sync | Deployment and Management of Complex Azure EnvironmentsGeek Sync | Deployment and Management of Complex Azure Environments
Geek Sync | Deployment and Management of Complex Azure Environments
 
IncQuery Server for Teamwork Cloud - Talk at IW2019
IncQuery Server for Teamwork Cloud - Talk at IW2019IncQuery Server for Teamwork Cloud - Talk at IW2019
IncQuery Server for Teamwork Cloud - Talk at IW2019
 
ELK Ruminating on Logs (Zendcon 2016)
ELK Ruminating on Logs (Zendcon 2016)ELK Ruminating on Logs (Zendcon 2016)
ELK Ruminating on Logs (Zendcon 2016)
 
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
Dutch Oracle Architects Platform - Reviewing Oracle OpenWorld 2017 and New Tr...
 
Why real integration developers ride Camels
Why real integration developers ride CamelsWhy real integration developers ride Camels
Why real integration developers ride Camels
 

Último

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 

Último (20)

WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by Anitaraj
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontology
 
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUKSpring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
JohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptx
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 

Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With Elastic Stack | On Premises vs SaaS Elastic Stack Comparisons.

  • 1. DEEP DIVE INTO ELASTICSEARCH Establish A Powerful Log Analysis System With Elastic Stack. On Premises vs SaaS Elastic Stack Comparisons. Tyler DevOps Engineer NFQ Asia Company
  • 2. Agenda • Intro. • Overview: Elastic Stack. • Establish a powerful log analysis system with Elastic Stack. • Elastic stack options from cloud providers. • Which one would be fit for us? • Cost Reflections. • In conclusion.
  • 3. About Me • In tech for 7+ years. • Technical Project Coordinator @ AVASO Technology Solutions. • Infrastructure Technical Lead @ Betfair Group PLC. • DevOps Engineer @ NFQ Asia. • Member of Vietnam Elasticsearch Community. • Bash/PowerShell languages. • A dog parent :D
  • 4. About NFQ Asia • Member of NFQ Company. • 15+ years’ experience in e-business strategy and software development • 300+ professionals. • 4 countries: offices in Lithuania, Germany, Vietnam, Singapore. • Founded in Vietnam since 2015. • Having organized 5 community events/hackathons in Vietnam.
  • 7. What is Elastic Stack? • Formerly known as ELK Stack. • ELK - The acronym for three open source projects: elasticsearch, logstash, and kibana. • Distributed, scalable, and highly available (both on premises or SaaS). • The Elastic Stack is the next evolution of ELK. • Supports the lightweight Beats data shippers from ES v2.1.1.
  • 8. Elasticsearch • “You know, for Search” • Free, Open Source. • Search engine based on Lucene. • Near real-time searching, analytics and visualization capabilities. • Sophisticated Restful API.
  • 9. Logstash • Open source data collection engine that unifies data from disparate sources, normalizes it and distributes it. • The ingestion workhorse for elasticsearch and more. • Real-time capabilities and pluggable pipeline architecture. • Community-extensible and developer-friendly plugin ecosystem.
  • 10. Kibana • Open source analytics and visualization platform designed to work with elasticsearch. • Specialized for large volumes of streaming and real-time data. • No code, no additional infrastructure required. • Easily and quickly understandable through graphic representation.
  • 11. Beats Platform • “Data shippers” that are installed on servers as agents. • Either elasticsearch directly or through logstash. • Library written based on Golang. • Supports create your own beat for specific use cases.
  • 12. ESTABLISH A POWERFUL LOG ANALYSIS SYSTEM WITH ELASTIC STACK
  • 13. Rationale • What is log? • How do we solve the production issue as usual? • How much time do you spend investigating the production issue? • Where are the archived log? • Visualization and dashboards?
  • 14. The Challenge How do you satisfy the search needs of the application system’s over 2,000 docs per second while simultaneously providing tactical operational insights that help both Development Team and Operation Team iteratively improve the customer experience?
  • 15. The Simple Log Analysis Diagram
  • 17. Scalability Rationale • High availability. • Petabyte-scale data is written and/or read frequently. • High scalability. • Sufficient data allocation. • Costs.
  • 19. The Elasticsearch Hot-Warm Architecture (cont.)
  • 20. ON PREMISES VS SaaS ELASTIC STACK COMPARISONS
  • 21. WHAT IS AWS ELASTICSEARCH SERVICE? • Managed service in AWS Cloud. • Introduced in Oct 2015. • Fully managed; Zero admin. • Highly available and reliable. • Built-in Kibana support. • Integrated with other services in AWS ecosystem.
  • 23. What is Elastic Cloud? • Launched in Oct 2015. • Provided by Elastic. • High provisioning and scaling. • Hosted in the Cloud Providers. • Service-oriented architecture. • Containerization using Docker. • Fully supports custom plugins and API.
  • 25. HOW DO I KNOW WHICH ONE IS FIT WITH ME?
  • 26. Specifications comparison sheet Self-managed Elastic Stack AWS Elasticsearch Service Elastic Cloud Enterprise Pros More options and features. Complete control settings and capacity. Access to other APIs Comprehensive ES monitoring solutions. Lowest costs. SaaS. Simplify the operations via APIs. Security by IAM. Automated snapshots*. Encryption at rest. Monitoring included*. Technical supported. SaaS. Fully control through APIs. Technical Supported. Uptime SLA. Feature-rich and complete monitoring product. Available on Marketplace. Cons Self maintenance. Infrastructure matters. No technical supported. X-Pack limit features. Limited control. Less capacity and scalability. Backup once time per day. No plugins, no logs. Medium expensive. Only support I2 series EC2 instances. Most expensive. Imperfect for AWS-hosted solutions.
  • 27.
  • 28. Costs Comparison Chart 8,400.38 10,678.56 11,512.51 75,303.17 81,375.17 11,316.98 14,500.26 25,201.1525,201.15 32,035.68 34,537.54 203,318.55 219,712.95 28,319.95 38,295.63 50,402.30 0 50,000 100,000 150,000 200,000 250,000 Elastic Stack (AWS) Elastic Stack (GCP) AWS Elasticsearch Services Elastic Cloud (GCP) Elastic Cloud (AWS) Cost($) Service Models One Year One Year (All Upfront) Three Years Three Years (All Upfront) *Costs calculated based on 3TB-data cluster in multi-AZ in Frankfurt region
  • 29. In Conclusion • Elasticsearch leverage the power of analysis ability for both Dev/Ops teams. • Easily operate/maintain the huge cluster of servers and microservices. • Choose the proper architecture depend on application/system. • Estimate the budget to meet the requirements. • Optimize the aggregation to adopt the resources. • High availability oriented system.
  • 30. We are hiring… • Java Senior/Lead Developer • PHP Senior Developer • PHP Technical Lead • Front-end Senior Developer • Front-end Technical Lead • Technical Project Manager Simply send us an email with your enclosed updated CV to: career@nfq.asia
  • 31. Contact Me LinkedIn: linkedin.com/in/tylernguyen91 Email: tai.nguyen@nfq.asia Telegram: @tylern91