What's LeonaLog | Log Collection | Server Configuration | Log Source | Log Sense | Leona Ecosystem | FAQs

Welcome! A centralized Log Management System (LMS) like LeonaLog provides a means to aggregate, organize, and make sense of all this data.

You can read more about the project on our LeonaLog Tutorial.

There are many features that enhance LeonaLog usefulness as a flexible tool:

• Streams operate as a form of tagging for incoming messages. Streams route messages into categories in real time, and team rules instruct LeonaLog to route messages into the appropriate stream.
• The LeonaLog Search page is the interface used to search logs directly. LeonaLog uses a simplified syntax, very similar to Lucene. Relative or absolute time ranges are configurable from drop down menus. Searches may be saved or visualized as dashboard widgets that may be added directly to dashboards from within the search screen.
• Users may configure their own views and may choose to see either a summary or complete data from event messages.
• LeonaLog Dashboards are visualizations or summaries of information contained in log events. Each dashboard is populated by one or more widgets. Widgets visualize or summarize event log data with data derived from field values such as counts, averages, or totals. Users can create indicators, charts, graphs, and maps to visualize the data.
• Alerts are created using Event Definitions that consist of Conditions. When a given condition is met it will be stored as an Event and can be used to trigger a notification.
• An Index is the basic unit of storage for data in OpenSearch and Elasticsearch. Index sets provide configuration for retention, sharding, and replication of the stored data. Values, like retention and rotation strategy, are set on a per-index basis, so different data may be subjected to different handling rules.
• LeonaLog's Processing Pipelines enable the user to run a rule, or a series of rules, against a specific type of event. Tied to streams, pipelines allow routing, denying, modification, and enrichment of messages as they flow through LeonaLog.

wget https://raw.githubusercontent.com/LeonaLog/leona/main/docker-compose.yml
docker-compose -f docker-compose.yml up -d

Then open your browser with http://lolahost:9000 ✌

Server configuration detail:

# Leona Server Configuration
## General
is_leader = true
node_id_file = ./server-node-id
password_secret = IHRzmjWfc0mh7D1Pepv7Od6NRL7jqNb0k9g8fvjwyX4Vq1KIHvQSFOHLf4BO1k3hdKdFWmceKwy46BGqIk2NurWAUYSedspb
root_username = admin
root_password_sha2 = 8c6976e5b5410415bde908bd4dee15dfb167a9c873fc4bb8a81f6f2ab448a918
rest_listen_uri = http://127.0.0.1:12900/

## Web & REST API
http_bind_address = 127.0.0.1:9000

## Elasticsearch / OpenElasticsearch
elasticsearch_max_docs_per_index = 20000000
elasticsearch_index_prefix = leonalog
elasticsearch_max_number_of_indices = 20
elasticsearch_shards = 1
elasticsearch_replicas = 0
elasticsearch_hosts = http://localhost:9200
elasticsearch_analyzer = standard
elasticsearch_disable_version_check = true

## Rotation
output_batch_size = 5000
processbuffer_processors = 5
outputbuffer_processors = 5
processor_wait_strategy = sleeping
ring_size = 1024

## MongoDB
mongodb_uri = mongodb://localhost:27017/leonalog
mongodb_max_connections = 100
mongodb_threads_allowed_to_block_multiplier = 5

• Overview
• Installation
  • Docker
  • Manual Setup
  • Log Collection
• Configuration
  • Server Conf
  • Web Interface
  • Multi-Nodes
  • Index Model
  • Backup
  • The REST APIs
• Security
  • Using ModSecurity
  • Logging User Activity
  • The URL Whitelist
• Getting In
  • Log Sources
  • Sidecar
  • Forwarder
• Making Sense
  • Pipelines
  • Streams
  • Enrichment
• Alerts & Notifications
  • Alerts And Events
  • Alerting By Example
  • Notifications
• Searching
  • Search Query Language
  • Time Frame Selector

Found a bug? Have an idea for an improvement? Feel free to add an issue.

Help us build the future of log management and be part of a project that is used by thousands of people out there every day.

Read the contributing instructions to get started.

Leona is released under Apache License, Version 2.0