Log Ingest Monitoring

Anyone have methods they've used to monitor logging health? Specifically, alerting around:

1. Feed connectivity

2. VM (e.g. hosting BindPlane agents) CPU usage, memory usage, etc..

3. Dashboarding best practices

I'm aware that if you have a SecOps instance you can leverage Google Cloud Monitoring for some of this and enable email alerts around feeds, but curious if other have deployed other/better methods.

Thank you

1 1 307
1 REPLY 1

Hello, Did you get the chance to review this article:

https://medium.com/@thatsiemguy/identifying-late-arriving-log-sources-8780b1f01836