Log Collection

Collection

• There currently is a SECCOM proposal that specifies what type of data should be logged where it should be logged to.  

  • REQ-374: ONAP shall use STDOUT for logs collectionDone

  • REQ-441: LOGS MANAGEMENT - PHASE 1: COMMON PLACE FOR DATATo Do

• How these logs would be collected and aggregated is specified by the ONAP NextGen Presentation by Byung.

  • ONAP Next Generation Security & Logging Architecture#ONAPLogging  

  • old presentation slide deck (see the above link for the latest on) https://lf-onap.atlassian.net/wiki/download/attachments/16471919/ONAP-Next-Generation-Security-Logging-2021-5-25-v1.pptx?version=1&modificationDate=1621953519000&api=v2

  • FILEBEAT CONTAINERS ALREADY being used in ONAP

    • Filebeat sidecar container setup and configuration in OOM

    • https://logs.onap.org/onap-integration/daily/onap_daily_pod4_master/2021-11/12_03-22/infrastructure-healthcheck/k8s/kubernetes-status/versions.html

Proposed Collection of Container Logs

[CON-LOG-REQ-13] The container MUST have security logging for the container and container application active from initialization. [Reference: R-84160]

[CON-LOG-REQ-20] The container and container application MUST use the STDOUT for security logs collection [Reference: REQ-441]