堆栈内存溢出
  简体   繁体   English

为什么 EKS 说我的 fluent-bit.conf 无效

[英]Why does EKS say my fluent-bit.conf is not valid

 原文  2021-06-22 15:30:24       amazon-web-services/ kubernetes/ logging/ amazon-eks/ fluent-bit

问题描述

I am trying to setup Fluent Bit for Kuberentes on EKS + Fargate.我正在尝试在 EKS + Fargate 上为 Kuberentes 设置 Fluent Bit。 I was able to get logs all going to one general log group on Cloudwatch but now when I add fluent-bit.conf: |我能够将日志全部转到 Cloudwatch 上的一个通用日志组,但现在当我添加 fluent-bit.conf 时:| to the data: field and try to apply the update to my cluster, I get this error:到数据:字段并尝试将更新应用到我的集群,我收到此错误:

for: "fluentbit-config.yaml": admission webhook "0500-amazon-eks-fargate-configmaps-admission.amazonaws.com" denied the request: fluent-bit.conf is not valid.对于:“fluentbit-config.yaml”:admission webhook“0500-amazon-eks-fargate-configmaps-admission.amazonaws.com”拒绝请求:fluent-bit.conf 无效。 Please only provide output.conf, filters.conf or parsers.conf in the logging configmap请仅在日志配置映射中提供 output.conf、filters.conf 或 parsers.conf

What sticks out the most to me is that the error message is asking me to only provide output, filter or parser configurations.对我来说最突出的是错误消息要求我仅提供 output、过滤器或解析器配置。

It matches up with other examples I found online, but it seems like I do not have the fluent-bit.conf file on the cluster that I am updating or something.它与我在网上找到的其他示例相匹配,但似乎我正在更新的集群上没有 fluent-bit.conf 文件。 The tutorials I have followed do not mention installing a file so I am lost as to why I am getting this error.我遵循的教程没有提到安装文件,所以我不知道为什么会收到此错误。

The

My fluentbit-config.yaml file looks like this我的 fluentbit-config.yaml 文件看起来像这样

kind: Namespace
apiVersion: v1
metadata:
  name: aws-observability
  labels:
    aws-observability: enabled
---
kind: ConfigMap
apiVersion: v1
metadata:
  name: aws-logging
  namespace: aws-observability
  labels:
    k8s-app: fluent-bit
data:
  fluent-bit.conf: |
    @INCLUDE input-kubernetes.conf
    
  input-kubernetes.conf: |
    [INPUT]
        Name tail
        Parser docker
        Tag logger
        Path /var/log/containers/*logger-server*.log
        
  output.conf: |
    [OUTPUT]
        Name cloudwatch_logs
        Match logger
        region us-east-1
        log_group_name fluent-bit-cloudwatch
        log_stream_prefix from-fluent-bit-
        auto_create_group On

2 个解决方案

解决方案1
 4 已采纳  2021-06-22 15:52:43

As per docs (at the very bottom of that page and yeah, we're in the process of improving them, not happy with the current state) you have a couple of sections in there that are not allowed in the context of EKS on Fargate logging, more specifically what can go into the ConfigMap .根据文档(在该页面的最底部,是的,我们正在改进它们,对当前状态不满意)你有几个部分在 Fargate 上的 EKS 上下文中是不允许的日志记录,更具体地说,可以将 go 放入ConfigMap中。 What you want is something along the lines of the following (note: this is from an actual deployment I'm using, slightly adapted):您想要的是以下内容(注意:这是来自我正在使用的实际部署,稍作修改):

kind: ConfigMap
apiVersion: v1
metadata:
  name: aws-logging
  namespace: aws-observability
data:
  output.conf: |
     [OUTPUT]
        Name cloudwatch_logs
        Match *
        region eu-west-1
        log_group_name something-fluentbit
        log_stream_prefix fargate-
        auto_create_group On
     [OUTPUT]
        Name  es
        Match *
        Host blahblahblah.eu-west-1.es.amazonaws.com
        Port 443
        Index something
        Type  something_type
        AWS_Auth On
        AWS_Region eu-west-1
        tls   On

With this config, you're streaming logs to both CW and AES, so feel free to drop the second OUTPUT section if not needed.使用此配置,您可以将日志流式传输到 CW 和 AES,因此如果不需要,请随意删除第二个 OUTPUT 部分。 However, you notice that there can not be the other sections that you had there such as input-kube.netes.conf for example.但是,您注意到那里不能有其他部分,例如input-kube.netes.conf

解决方案2
 0  2022-03-03 09:42:18

I wonder if anyone managed to process the 'log' section with fargate 'hide-car' using parser as per fluentbit conf documentation .我想知道是否有人按照 fluentbit conf 文档使用解析器设法使用 fargate 'hide-car' 处理 'log' 部分。 Here's a snippet of my aws-logging config map which pushes logs to both outputs but sadly the parsing is never happening.这是我的 aws-logging 配置 map 的一个片段,它将日志推送到两个输出,但遗憾的是解析从未发生。

I would like to avoid using hacky regexes when viewing logs in Opensearch which can be avoided with proper parsing of the 'logs'.在 Opensearch 中查看日志时,我想避免使用 hacky 正则表达式,这可以通过正确解析“日志”来避免。

PS.附言。 I noticed fluentbit docs refer to so called 'docker' parser but fargate nodes are using containerd as the container runtime which could potentially be a problem?我注意到 fluentbit 文档提到了所谓的“docker”解析器,但 fargate 节点正在使用 containerd 作为容器运行时,这可能是一个问题?

data:
  filters.conf: |
    [FILTER]
        Name             kubernetes
        Match            kube.*
        Merge_Log           On
        Merge_Log_Key       log_proccessed
        Buffer_Size         0
        Kube_Meta_Cache_TTL 300s
        Parser docker
  flb_log_cw: 'true'
  output.conf: |
    [OUTPUT]
        Name cloudwatch_logs
        Match   *
        region eu-west-1
        log_group_name /aws/eks/bs-277-main/container
        log_stream_prefix log-
    [OUTPUT]
        Name  es
        Match *
        Host  vpc-my-amazing-os-endpoint.eu-west-1.es.amazonaws.com
        Port  443
        Index kubernetes
        Type  doc
        AWS_Auth On
        AWS_Region eu-west-1
        tls   On
  parsers.conf: |
    [PARSER]
        Name         docker
        Format       json
        Time_Key     time
        Time_Format  %Y-%m-%dT%H:%M:%S.%L
        Time_Keep    On

Came across this example of fluentbit config with containerd log parsing but it is based on adding Parser param to [INPUT] section which is ignored in Fargate as it is presumably managed by AWS.遇到了这个使用 containerd 日志解析的 fluentbit 配置示例,但它基于将 Parser 参数添加到 [INPUT] 部分,这在 Fargate 中被忽略,因为它可能由 AWS 管理。

It is very unfortunate that crucial component of observability such as fluentbit has so little documentation on AWS Fargate.非常不幸的是,可观察性的关键组件(例如 fluentbit)在 AWS Fargate 上的文档太少了。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Fluent Bit 不从我的 EKS 自定义应用程序发送日志 - Fluent Bit does not send logs from my EKS custom applications EKS - Fluent-bit,CloudWatch 无法从日志条目中删除 Kube.netes 数据 - EKS - Fluent-bit, to CloudWatch unable to remove Kubernetes data from log entries 为什么 aws Step Func 说它叫我的 lambda fn,但是没有那个 lambda 的日志组? - Why does aws Step Func say it called my lambda fn, but there is no log group for that lambda? 为什么我的 Dataflow 作业使用的 VM 显示“正在使用中”? - Why do VMs used by my Dataflow jobs say "in use by"? 为什么我的 ALB 端点出现 502 错误,针对 EKS 托管服务 - Why am I getting 502 errors on my ALB end points, targeted at EKS hosted services EKS 上的 Knative 是否支持节点自动缩放器? - Does Knative on EKS support node autoscaler? EKS 集群未在 Ingress controller 上显示我的 IP - EKS cluster is not showing my an IP on the Ingress controller 为什么应用卡在 module.eks.aws_autoscaling_group.workers[0]: Refreshing state? - Why does apply get stuck at module.eks.aws_autoscaling_group.workers[0]: Refreshing state? 为什么 EKS pod 引用旧的人工图像地址? - Why EKS pods referring to old artifactory image address? 为什么 Twilio 说发送 WhatsApp 消息必须使用预先批准的模板,然后允许我发送任意非模板消息? - Why does Twilio say that sending a WhatsApp message must use a pre-approved template, then allow me to send an arbitrary untemplated message?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM