Monitoring of OpenShift, Kubernetes & Docker by Outcold

With Outcold Solutions, you can monitor Docker, Kubernetes, and OpenShift clusters in Splunk Enterprise or Splunk Cloud. The solution, based on container-native software, provides capabilities for:

• Filtering data from log streams
• Detecting, transforming, and forwarding logs using flexible and powerful tools
• Collecting system metrics
• Collecting metrics from the control plane of the orchestration frameworks
• Forwarding network activities
• Masking sensitive information before forwarding it from log lines

Container Logs

• Built on the JSON file logging driver
• Support for multi-line log lines
• Flexible source naming for extracting custom fields

Host Logs

• Forward host logs, including Docker daemon and syslog
• Preconfigured fields
• Extraction for key cluster components
• Monitoring cluster integrity with pre-built dashboards

Metrics

• Collect CPU, memory, network, and disk metrics at the host, pod, and container level
• Generate detailed process metrics directly from the proc file system
• Correlate metrics with logs

Diagnostics

• Inspect containers with enhanced security features and those running as the root user
• Monitor allocatable resources, requests, and limits

Only ten minutes of setup, and your monitoring solution is ready to use: including log aggregation, performance and system metrics, control plane metrics, application metrics, dashboards to review network activities, and alerts to notify you of any issues related to cluster or application performance.

Application Monitoring

View detailed metrics from containers and processes, including performance data, usage metrics, and security insights. Forward application-specific metrics exported in Prometheus format. Use pre-built Splunk dashboards for a comprehensive overview.

Log Aggregation

Aggregate logs from containers, applications, and servers. Use flexible mappings to filter logs enriched with container metadata, correlate logs with metrics, and leverage Splunk’s log analysis capabilities. Transform logs before they reach Splunk, remove confidential information and PII to maintain consistency. Reduce license and storage costs by selecting which log lines to forward.

Cluster Health Monitoring

Analyze cluster issues by reviewing historical events, monitoring resource allocations, and managing cluster capacity. Use pre-built alerts to continuously monitor cluster health from day one.

Security and Audit

Define data access by cluster, namespace, and even down to pods or containers. Inspect network activities within your cluster and external connections. Identify containers running with elevated security permissions. Use audit logs to track changes in deployments.

Reduced Complexity & Increased Productivity

Use a single tool to collect and forward logs and metrics required by developers to understand the performance and health of their applications. With annotations, developers can define how data should appear in the log aggregation tool, specify multi-line log patterns, remove terminal escape codes, and override types, sources, and indexes.