Updated on: 15 February 2021

VMware vRealize Log Insight Cloud | 15 February 2021

Contents

 January 2021

  • Logstash Log Source: You can now configure Logstash to collect logs from various sources and forward them to vRealize Log Insight Cloud. Logstash is an open source data collection engine with real-time pipelining capabilities. You can find the configuration steps within the  vRealize Log Insight Cloud user interface.
  • Alert Definition: The new alert management UI lets you create a granular rule definition of log alerts/events with the ability to set different notifications for different severities. The Alert Definition options let you browse all the log alert definition rules at one place. You can sort them through text filters or by origin, type, and tags. You can select multiple rules and take actions quickly like add or remove tags, add to a dashboard, or delete them . You can also classify alerts as info, warning, immediate, or critical, and change your notification methods as required. 
  • Alert Exploration: You can browse your security incidents and log alerts similar to log search with the new Triggered Alerts page. You can filter triggered alerts by severity, type, origin, and tags for quick review and prioritization. The new alert notifications include chart visualizations of triggered alerts over a specified time range.
  • VMware Site Recovery Manager log integration: VMware Site Recovery Manager (SRM) is a business continuity and disaster recovery solution that helps you plan, test, and run the recovery of virtual machines between a protected vCenter Server site and a recovery vCenter Server site. SRM log integration and content pack is now available, which collects, imports, and analyzes logs to provide real-time answers to problems related to systems, services, and applications, and derive important insights.

 December 2020

  • GCP Log Sources: vRealize Log Insight Cloud provides 11 Google Cloud Platform log sources, including applications such as CloudFunctions, Compute Engine, Firewall, Storage, and VPC. You can find the configuration steps for the log sources within the user interface. Once the logging configuration is complete, you can verify the log flow to the environment in Log Sources, on the Logs tab. The log messages already include the field definitions in the log stream to assist with log filtering and alerting. Administrators can also extract custom field definitions.
  • Fluent Bit Log Source: You can now configure Fluent Bit to collect logs from various sources and forward to vRealize Log Insight Cloud. Fluent Bit is an open source Log Processor and Forwarder, which lets you collect data like logs from different sources and enrich them with filters. It is the preferred choice for containerized environments such as Kubernetes. You can find the configuration steps for the Fluent Bit log sources within the vRealize Log Insight Cloud user interface.
  • New Region: EU (Frankfurt): vRealize Log Insight Cloud is now available in the AWS EU (Frankfurt) region.

 October 2020

  • Azure Log Sources: vRealize Log Insight Cloud provides 11 Azure Cloud log sources, including applications such as Activity Logs, Blob Storage, Event Hub, Kubernetes Service, Search Service, and SQL. You can find the configuration steps for the log sources within the vRealize Log Insight Cloud user interface. Once the logging configuration is complete, you can verify the log flow to the environment in Log Sources, on the Logs tab. The log messages already include the field definitions in the log stream to assist with log filtering and alerting. Administrators can also extract custom field definitions.
  • New AWS Log Sources: vRealize Log Insight Cloud now provides 41 AWS log sources, including newly added applications such as CodeBuild, Code Deploy, EBS, EventBridge, and Fargate. 

 September 2020

  • New Region: APJ (Sydney): vRealize Log Insight Cloud is now available in the AWS APJ (Sydney) region.
  • vRealize Log Insight Cloud from VMware Cloud on AWS Activity Log: You can now access vRealize Log Insight Cloud from the Activity Log through a quick link to view all your logs, including all the events in your Activity Log. 

 August 2020

For a detailed overview of the August 2020 release updates for vRealize Log Insight Cloud, see https://blogs.vmware.com/management/2020/09/vmware-vrealize-log-insight-cloud-q3-release-updates.html.

  • AWS Log Sources: vRealize Log Insight Cloud provides 35 AWS log sources, including applications such as CloudTrail, CodeDeploy, and SQS. You can find the configuration steps for the log sources within the user interface. Once the logging configuration is complete, you can verify the log flow to the environment in Log Sources, on the Logs tab. vRealize Log Insight Cloud includes out-of-the-box dashboards for AWS services including DynamoDB, Kinesis, S3, SNS, SQS, and EKS. The log messages already include the field definitions in the log stream to assist with log filtering and alerting. Indexed fields are created based on intelligent grouping algorithms applied to messages that are ingested. Content fields are defined as part of content packs that are enabled. Administrators can also extract custom field definitions.
  • One-Click Field Extraction: vRealize Log Insight Cloud includes a number of extracted fields based on log sources and content packs. The one-click extract field option populates all context values that correspond to the field you select in a log event in a case where you want to assign values to log data that is not already extracted. You can review extracted field regex values that were automatically defined.
  • Home Page Customization: vRealize Log Insight Cloud has a customizable Home page with a drag-and-drop functionality that lets you add widgets to the page. You can also set a dashboard as the landing page, so that the dashboard is the first page you see when you sign in.
  • Dashboard Workbench: vRealize Log Insight Cloud provides the interface for creating dashboards with a drag-and-drop functionality. You can add your most frequently used queries and alerts to your dashboards for quick review. You can also resize widgets and move them around the canvas as desired.
  • Dashboard Filtering with Group Actions: The new dashboard management options let you quickly tag dashboards for specific service roles, sort dashboards through text filters, by content packs, or author. You can filter by your customized lists or by the number of widgets. You can select multiple dashboards and add them to lists, add or remove tags, or delete them. You can manage thousands of dashboards by using filters.
  • Audit Events for VMware Cloud: You can access all your VMware Cloud audit events including Activity Overview, Alarms, Clusters, Datastores, DRS, Hosts, NSX-T Events, Resource Pools, Roles and Permissions, Users, and Virtual Machines. You can quickly access log data from a dashboard query.
  • Log Data Navigation from Dashboards: You can review detailed log queries represented in dashboard widgets.
  • Comprehensive Overview Dashboard: You can review events by type and host name, and review unique instances of event types occurring in your environment.
  • Alert Snoozing: You can quickly disable alerts while troubleshooting a known issue or for scheduled maintenance.
  • Customize Visualizations: You can modify chart types, including new options for Event Streams and Event Trends.
check-circle-line exclamation-circle-line close-line
Scroll to top icon