Logging for VPC
After you provision IBM® Log Analysis to add log management capabilities to your IBM Cloud® architecture, you can enable platform logs to view and analyze VPC logs.
Platform logs
Platform logs are logs that are exposed by logging-enabled services and the platform in IBM Cloud. You must configure a Log Analysis instance in a region to monitor these logs.
For more information, see Configuring IBM Cloud platform logs.
Viewing logs
VPC services generate platform logs in the same region where they are available. You can view, monitor, and manage VPC logs through the IBM Log Analysis instance that is marked as platform logs in the region.
To launch the Log Analysis web UI to view these logs, see Navigating to the web UI.
For more information about the locations where VPC logs are available, see VPC infrastructure services locations.
Fields per log type
Table 1 outlines the fields that are included in each log record:
| Field | Type | Description |
|---|---|---|
logSourceCRN |
Required | Defines the account and flow log instance where the log is published. |
saveServiceCopy |
Required | Defines whether IBM saves a copy of the record for operational purposes. |
message |
Required | Description of the log that is generated. |
messageID |
Required | ID of the log that is generated. |
msg_timestamp |
Required | The timestamps when the log is generated. |
resolution |
Optional | Guidance on how to proceed if you receive this log record. |
documentsURL |
Optional | More information on how to proceed if you receive this log record. |
generation |
Required | Defines the VPC source of the log. Valid options are 1 for VPC Classic, and 2 for VPC Gen 2. |
Log messages
The following tables list the message IDs that are generated by VPC services:
Flow log collector
Table 2 outlines the message IDs that are generated by the flow log collector service:
| Message ID | Type | Learn More |
|---|---|---|
is.flow-log-collector.00001E |
err |
Failed to write Flow Log file for the past 24 hours. Dropping flow log for Virtual Server <ServerName> |
is.flow-log-collector.00002E |
err |
Unauthorized access to Cloud Object Storage bucket <BucketName> |
is.flow-log-collector.00003E |
err |
Cloud Object Storage bucket <BucketName> was not found |
Flow log collector generates hourly logs.
Dedicated Host
Table 3 outlines the message IDs that are generated for dedicated hosts:
| Message ID | Type | Learn More |
|---|---|---|
dedicated-host.00001 |
err |
Failed to create dedicated host <Dedicated Host ID> due to insufficient capacity in zone. |
dedicated-host.00002 |
info |
Provisioned a virtual server instance on dedicated host <Dedicated Host ID>. |
dedicated-host.00003 |
info |
Removed a virtual server instance on dedicated host <Dedicated Host ID>. |
A log is generated when each Dedicated Host event occurs.
Snapshots for VPC
Table 4 outlines the message IDs that are generated by the Snapshots service:
| Message ID | Type | Learn More |
|---|---|---|
snapshot.00001 |
info |
Snapshot creation requested for volume <Volume ID>. |
snapshot.00002 |
info |
Snapshot <Snapshot ID> is successfully captured. Volume <Volume ID> |
snapshot.00003 |
info |
Snapshot <Snapshot ID> is an incremental snapshot. Volume <Volume ID> |
snapshot.00004 |
info |
Snapshot <Snapshot ID> is a full snapshot. Volume <Volume ID> |
snapshot.00005 |
info |
Snapshot <Snapshot ID> is available. Volume <Volume ID> |
snapshot.00006 |
info |
Snapshot <Snapshot ID> is uploaded. Volume <Volume ID> |
snapshot.00007 |
info |
Snapshot <Snapshot ID> deletion requested. |
snapshot.00008 |
info |
Snapshot <Snapshot ID> is successfully deleted. Volume <Volume ID> Region <Region> |
snapshot.00009 |
info |
All snapshots of volume <Volume ID> in the region <Region> are requested to be deleted. |
snapshot.00010 |
info |
Delete all snapshots request for volume <Volume ID> is completed successfully. Region <Region> |
snapshot.00010 |
info |
Snapshot copy creation in region <Region> requested for snapshot <Snapshot ID> from region <Source Region>. Volume <Volume ID> |