Ok that title may be a bit much but anything to make sifting through logs is a good thing in my book. I’m trying out Sumo Logic as my new log aggregator, not that I’ve had one before, but it’s been on my list of things to check out for a while now. So far I must say I’m impressed, it took me about 30 minutes to get all my personal servers setup and shipping logs to them. About another 30 minutes to fine tune what logs I actually wanted to see. They have made the setup process very painless compared to some of the other system’s I’ve messed with.
I can now see all the fail2ban logs and quickly see when someone is trying to mess with my server. Their live tail mode is very cool, making it easy to watch for certain issues in my syslog when I am troubleshooting an issue. Like right now I just realized that I have a hard drive with issues, one quick search for SMART* and I see I’ve got:
/dev/sda [SAT], 1 Offline uncorrectable sectors
Thankfully I’m paid up on my CrashPlan subscription and I’m ordering a new hard drive now.
Since my personal servers don’t get a ton of love these days I’m hoping that having logs more visible will help me keep them running healthier.