Skip to main content
Sumo Logic

Sumo Logic Kubernetes Apps

Learn about the Sumo Logic Kubernetes apps.

Sumo Logic provides a selection of Kubernetes apps to monitor various different aspects of your Kubernetes platform and environment. The apps provide OOB dashboards and other content relevant for you to monitor your K8s environment.  

Overview

  • Kubernetes App—Provides visibility into the operations and security of the worker nodes in a cluster, as well as the application logs of the worker nodes. One Kubernetes App can monitor multiple clusters, utilizing Falco events to detect abnormal container, application, host, and network activity. This app is generally recommended to be used in conjunction with the Kubernetes Control Plane App, depending on your deployment.
  • Kubernetes Control Plane App—Monitors the master node control plane, including the API server, etc, kube-system, and worker nodes. The App utilizes Falco Kubernetes Audit events to monitor and detect notable or suspicious activity, such as creating pods that are privileged, mounting sensitive host paths, using host networking, and the like.
  • AKS, EKS, and GKE Control Plane Apps—Provide insights into the master node or vendor-specific control plane, including the API server, control manager, kube-scheduler, etc, and kube-system. 

k8s_App_Catalog.png

Sumo Logic Kubernetes App

The Sumo Logic Kubernetes App provides visibility into the worker nodes that comprise a cluster, as well as application logs of the worker nodes. The App is a single-pane-of-glass through which you can monitor and troubleshoot container health, replication, load balancing, pod state, and hardware resource allocation. The App also integrates with Falco, an open source container native runtime security tool to monitor and detect anomalous container, application, host, and network activity. This app works in conjunction with the Sumo Logic Apps for the Kubernetes Control Plane, AKS Control Plane, GKE Control Plane, and EKS Control Plane apps to provide visibility into the control plane, including the API server, scheduler, and controller manager.

The following dashboard is an example of one of the many pre-configured dashboards you can access with the app to view and analyze data from your Kubernetes environment.

K8s_Cluster_Overview.png

Sumo Logic Kubernetes Control Plane App

The Sumo Logic Kubernetes Control Plane App manages the master node control plane, including the API server, etcd, kube-system and worker nodes. The App utilizes Falco Kubernetes Audit events to monitor and detect notable or suspicious activity such as creating pods that are privileged, mount sensitive host paths, use host networking, and the like. Seamlessly integrated with the Sumo Logic Kubernetes App, pre-configured dashboards display resource-related metrics for Kubernetes deployments, clusters, namespaces, pods, containers, and daemonsets.

The following dashboard is an example of one of the many pre-configured app dashboards you can access to view and analyze data from your Kubernetes environment.

K8s_CP_Controller_Manager.png

Amazon EKS - Control Plane

The Sumo Logic App for Amazon EKS - Control Plane provides visibility into the EKS control plane with operational insights into the API server, scheduler, control manager, and worker nodes. The app’s pre-configured dashboards display resource-related metrics for Kubernetes deployments, clusters, namespaces, pods, containers, and daemonsets. This app works in conjunction with Sumo Logic Kubernetes app that provides visibility into worker node metrics and application logs.

The following dashboard is an example of one of the many pre-configured app dashboards you can access to view and analyze data from your Kubernetes environment.

EKS_API_Server_Overview.png

Azure Kubernetes System (AKS) - Control Plane

The Sumo Logic App for Azure Kubernetes Service (AKS) - Control Plane provides visibility into the AKS control plane with operational insights into the API server, scheduler, control manager, and worker nodes. The pre-configured app dashboards display resource-related metrics for Kubernetes deployments, clusters, namespaces, pods, containers, and daemonsets. This app works in conjunction with Sumo Logic Kubernetes app that provides visibility into worker node metrics and application logs.

The following dashboard is an example of one of the many pre-configured app dashboards you can access to view and analyze data from your Kubernetes environment.

AKS_Scheduler.png

Google Kubernetes Engine (GKE) - Control Plane

The Sumo Logic App for Google Kubernetes Engine (GKE) - Control Plane allows you to monitor resource-related logs and metrics for Kubernetes deployments, clusters, namespaces, pods, containers, and daemonsets. The App provides visibility into the GKE control plane with operational insights into the API server, control manager, and worker nodes. This app works in conjunction with Sumo Logic Kubernetes app that provides visibility into worker node metrics and application logs.

The following dashboard is an example of one of the many pre-configured app dashboards you can access to view and analyze data from your Kubernetes environment.

GKE_Node_Logs.png