Apache To Riak
This article explains how to use Fluentd's Riak Output plugin (out_riak) to aggregate semi-structured logs in real-time.
An OSX or Linux machine
Fluentd is installed (installation guide)
Riak is installed
An Apache web server log
The Riak output plugin is used to output data from a Fluentd node to a Riak node.
Rubygems users can run the command below to install the plugin:
$ gem install fluent-plugin-riak
If you are using td-agent, run following command to install the Riak output plugin.
td-agent v2:
/usr/sbin/td-agent-gem install fluent-plugin-riaktd-agent v1: `/usr/lib/fluent/ruby/bin/fluent-gem install
fluent-plugin-riak
Create a configuration file called fluent.conf and add the following lines:
<source>@type tailformat apache2path /var/log/apache2/access_logpos_file /var/log/fluentd/apache2.access_log.postag riak.apache</source>​<match riak.**>@type riakbuffer_type memoryflush_interval 5sretry_limit 5retry_wait 1snodes localhost:8087 # Assumes Riak is running locally on port 8087</match>
The <source>...</source> section tells Fluentd to tail an Apache2-formatted log file located at /var/log/apache2/access_log. Each line is parsed as an Apache access log event and tagged with the riak.apache label.
The <match riak.**>...</match> section tells Fluentd to look for events whose tags start with riak. and send all matches to a Riak node located at localhost:8087. You can send events to multiple nodes by writing nodes host1 host2 host3 instead.
Launch Fluentd with the following command:
$ fluentd -c fluentd.conf
Please confirm that you have the file access permissions to (1) read the Apache log file and (2) write to `/var/log/fluentd/apache2.access_log.pos` (sudo-ing might help).
You should now see data coming into your Riak cluster. We can make sure that everything is running smoothly by hitting Riak's HTTP API:
$ curl http://localhost:8098/buckets/fluentlog/keys?keys=true{"keys":["2014-01-23-d30b0698-b9de-4290-b8be-a66555497078", ...]}$ curl http://localhost:8098/buckets/fluentlog/keys/2014-01-23-d30b0698-b9de-4290-b8be-a66555497078[{"tag": "riak.apache","time": "2004-03-08T01:23:54Z","host": "64.242.88.10","user": null,"method": "GET","path": "/twiki/bin/statistics/Main","code": 200,"size": 808,"referer": null,"agent": null}]
There it is! (the response JSON is formatted for readability)
​Fluentd Architecture​
​Fluentd Get Started​
​Riak Output Plugin​
If this article is incorrect or outdated, or omits critical information, please let us know. Fluentd is a open source project under Cloud Native Computing Foundation (CNCF). All components are available under the Apache 2 License.
