I have been working as the Senior Systems Engineer in the operations group at a company called Airbiquity for the past year or so.
As part of my daily job I come into contact with many new and interesting products and things that help me do my job better.
Firstly, how often do you find that you need to constantly debug several machines at one? Tailing syslogs on each box can become a nightmare when you have more than one machine to look at. Consider these options…
- Configure your systems with syslog-ng to forward to a centralized syslog server where you can “tail -f” your problems easily.
- Buy expensive products such as SolarWinds syslog and snmp trap collector.
- Use a free (500mb/day) syslog collector and search utility called Splunk
After messing with the SolarWinds products for a while I decided to move against it towards open source and free/cheaper options.
At Airbiquity I configured all of our servers and network equipment to send their syslog requests to a centralized syslog server. This was great for work debugging but I had trouble letting my boss have an easy utility that they could search with.
This is when I setup Splunk, it’s easy to install and while it can be load intensive it was a lot more intuitive and easy to use than the SolarWinds offering. So far it’s been great and we’re going to start looking into AD integration and clustering to support our multiple data centers.
(more…)
