-Real-time Log Collection
Displays collected log data on the console in a simple and orderly manner for easy log query.
-Log Query and Analysis
Allows log query by keyword or in fuzzy mode for real-time log analysis, security diagnosis, and operations and customer services.
-Log Monitoring and Alarm Reporting
Collects statistics on logs stored in LTS by keyword. Service status can be monitored in real time based on the number of keyword occurrences in logs within a specified period.
-Log Transfer
Transfers logs to Object Storage Service (OBS), Distributed Message Service (DMS), or Data Ingestion Service (DIS) for long-term storage without deleting them from LTS.
Log Groups
A log group is a group of log streams that share the same log retention settings. Up to 100 log groups can be created for a single account.
Log Streams
A log stream is the basic unit for reading and writing logs. You can separate different types of logs (such as operation logs and access logs) into different log streams for easier log management and viewing. Up to 100 log streams can be created in a log group.
Host Management
ICAgent is a log collection tool for LTS. It runs on the host where logs are collected. If LTS is used to collect logs, install ICAgent.
Host Groups
A host group allows you to configure host log ingestion efficiently. You can sort multiple hosts into a host group and associate the host group with log ingestion configurations. The ingestion configurations will be applied to all the hosts in the host group, saving you the trouble of configuring the hosts individually.
When there is a new host, simply add it to a host group and the host will automatically inherit the log ingestion configurations associated with the host group.
You can also use host groups to modify the log collection paths for multiple hosts in one go.
Log Ingestion
LTS enables you to ingest logs from hosts and cloud services in real time and supports multiple means of collection, including ICAgent, APIs, and SDKs. Ingested logs are displayed on the LTS console in an intuitive and orderly manner. You can query logs that you need quickly and with ease.
Log Structuring
Logs in fixed or similar formats are extracted from a log stream based on your defined structuring method and irrelevant logs are filtered out. You can then use SQL syntax to query and analyze the structured logs.
Visualization
LTS supports SQL queries on structured logs. After log structuring, you can perform SQL query and analysis on logs in just 1 to 2 minutes.
Dashboard
A dashboard is composed of multiple charts and allows you to view the SQL analysis results of logs in real time.
Log Alarms
You can set alarms based on keyword frequency or SQL statistics in log streams to monitor service status in real time. Currently, up to 200 keyword and SQL alarms can be created for each account.
Log Transfer
LTS retains the log data reported by hosts and cloud services for seven days by default. To retain logs for a longer period, transfer them to other cloud services.