Skip to main content
Sumo Logic

Collect Logs and Metrics for the Kubernetes App

This page has instructions for collecting logs and metrics for the Sumo App for Kubernetes.  FluentBit and FluentD. Prometheus collects metrics data for Sumo Logic.


Set the following fields in the Sumo Logic UI prior to configuring collection. This ensures that your logs are tagged with relevant metadata, which is required by the app dashboards and Explore.

  • cluster
  • container 
  • deployment 
  • host
  • namespace
  • node
  • pod
  • service

For information on setting up fields, see the Fields help page.

Collecting metrics and logs for Kubernetes

Reference the Deployment Guide in our sumologic-kubernetes-collection GitHub repository for detailed instructions on how to collect Kubernetes logs, metrics, and events; enrich them with deployment, pod, and service level metadata; and send them to Sumo Logic.

The Deployment Guide has information on advanced configurations, best practices, performance, troubleshooting, and upgrading for our latest and previous versions of supported software.

Sample log message

Application Logs
{"timestamp":1561534865020,"log":"E0626 07:41:05.020255       1 
manager.go:101] Error in scraping containers from kubelet: 
failed to get all container stats from Kubelet URL \"\": 
Post dial tcp 
getsockopt: connection refused"}

Query sample

Message Breakdown by Container from the Dashboard Container Logs
 cluster = * and namespace = * and pod = * and container = *
| json field=_raw "log" as message
| fields - message | count container | top 10 container by _count