Deploying Grafana Loki on Kubernetes
Introduction
This guide provides a comprehensive walkthrough for deploying Grafana Loki on a Kubernetes cluster using Helm. Loki is a horizontally scalable, highly available log aggregation system designed for efficiency, simplicity, and tight integration with Grafana.
What is Loki?
Loki is a multi-tenant log aggregation system inspired by Prometheus. It indexes logs by labels, offering a cost-effective alternative to traditional full-text indexing solutions.
Key Advantages
-
Scalable: Designed to handle high log volume with horizontal scaling support.
-
Multi-Tenant: Allows logical isolation of logs across teams or services.
-
Cost-Efficient: Lightweight indexing reduces storage and compute costs.
-
Grafana Integration: Seamlessly integrates into Grafana for unified observability with metrics and traces.
-
Simplicity: Loki’s architecture is simple to deploy and operate.
-
Flexible Storage: Supports local file systems, S3, GCS, and other object stores.
-
Powerful Query Language: Enables advanced filtering and searching via LogQL.
-
Optimized Indexing: Uses a minimal indexing strategy for fast queries.
-
CNCF Project: Backed by a strong community as a CNCF project.
-
OpenTelemetry Support: Easily ingests logs through the OpenTelemetry Collector.
Pre-requisites
Add Loki Helm Repository
$ helm repo add grafana https://grafana.github.io/helm-charts
$ helm repo updateVerify Chart Availability
$ helm search repo grafana/lokiExample output:
grafana/loki 6.30.1 3.5.0 Helm chart for Grafana Loki and Grafana Enterpr...
grafana/loki-canary 0.14.0 2.9.1 Helm chart for Grafana Loki Canary
grafana/loki-distributed 0.80.5 2.9.13 Helm chart for Grafana Loki in microservices mode
grafana/loki-simple-scalable 1.8.11 2.6.1 Helm chart for Grafana Loki in simple, scalable...
grafana/loki-stack 2.10.2 v2.9.3 Loki: like Prometheus, but for logs.This guide uses the grafana/loki chart.
Download the Loki Helm Chart
$ helm pull grafana/loki --version 6.30.1This downloads loki-6.30.1.tgz into the current directory.
Inspect Default Values
$ helm show values grafana/loki --version 6.30.1 > loki-values-6.30.1.yamlThis file contains default values which can be customized based on your deployment needs.
Deploying Loki with Filesystem Storage
For development purposes, Loki can be configured to use MinIO as a local object store.
Example: loki-filesystem-values.yaml
You can find a base configuration from the official Loki GitHub repository:
Here’s a simplified version for testing:
loki:
auth_enabled: false
schemaConfig:
configs:
- from: 2024-04-01
store: tsdb
object_store: s3
schema: v13
index:
prefix: loki_index_
period: 24h
ingester:
chunk_encoding: snappy
tracing:
enabled: true
querier:
# Default is 4, if you have enough memory and CPU you can increase, reduce if OOMing
max_concurrent: 4
#(1)
deploymentMode: SimpleScalable
backend:
replicas: 3
read:
replicas: 3
write:
replicas: 3
# Enable minio for storage
#(2)
minio:
enabled: true
# Zero out replica counts of other deployment modes
singleBinary:
replicas: 0
ingester:
replicas: 0
querier:
replicas: 0
queryFrontend:
replicas: 0
queryScheduler:
replicas: 0
distributor:
replicas: 0
compactor:
replicas: 0
indexGateway:
replicas: 0
bloomCompactor:
replicas: 0
bloomGateway:
replicas: 0| 1 | This configuration sets Loki to run in SimpleScalable mode, which is suitable for development and testing. It uses a single binary deployment with multiple replicas for the backend, read, and write components. |
| 2 | This configuration enables MinIO as the storage backend for Loki. If you want to use S3 instead, you can remove the minio section and configure the S3 settings in the loki section. |
Install Loki
Create the namespace if it doesn’t already exist:
$ kubectl get namespace o11y &> /dev/null || kubectl create namespace o11yInstall the Loki release:
$ helm install loki grafana/loki \
--namespace o11y \
--version 6.30.1 \
--values loki-filesystem-values.yamlValidate Deployment
Verify pods and services:
$ kubectl -n o11y get pods,services -l app.kubernetes.io/name=lokiThis confirms successful deployment.
Example output:
NAME READY STATUS RESTARTS AGE
pod/loki-backend-0 2/2 Running 0 31m
pod/loki-backend-1 2/2 Running 0 31m
pod/loki-backend-2 2/2 Running 0 31m
pod/loki-canary-m7hz6 1/1 Running 0 31m
pod/loki-canary-r957h 1/1 Running 0 30m
pod/loki-canary-zn7qd 1/1 Running 0 31m
pod/loki-chunks-cache-0 2/2 Running 0 31m
pod/loki-gateway-5ffbb7f958-gxnfg 1/1 Running 0 31m
pod/loki-read-6ffdcc89dc-2ntlx 1/1 Running 0 31m
pod/loki-read-6ffdcc89dc-5zzfn 1/1 Running 0 31m
pod/loki-read-6ffdcc89dc-jnhps 1/1 Running 0 31m
pod/loki-results-cache-0 2/2 Running 0 31m
pod/loki-write-0 1/1 Running 0 31m
pod/loki-write-1 1/1 Running 0 31m
pod/loki-write-2 1/1 Running 0 31m
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/loki-backend ClusterIP 10.100.214.56 <none> 3100/TCP,9095/TCP 31m
service/loki-backend-headless ClusterIP None <none> 3100/TCP,9095/TCP 31m
service/loki-canary ClusterIP 10.100.61.157 <none> 3500/TCP 31m
service/loki-chunks-cache ClusterIP None <none> 11211/TCP,9150/TCP 31m
service/loki-gateway ClusterIP 10.100.218.190 <none> 80/TCP 31m
service/loki-memberlist ClusterIP None <none> 7946/TCP 31m
service/loki-query-scheduler-discovery ClusterIP None <none> 3100/TCP,9095/TCP 31m
service/loki-read ClusterIP 10.100.73.20 <none> 3100/TCP,9095/TCP 31m
service/loki-read-headless ClusterIP None <none> 3100/TCP,9095/TCP 31m
service/loki-results-cache ClusterIP None <none> 11211/TCP,9150/TCP 31m
service/loki-write ClusterIP 10.100.237.223 <none> 3100/TCP,9095/TCP 31m
service/loki-write-headless ClusterIP None <none> 3100/TCP,9095/TCP 31mAccessing Loki Gateway
The loki-gateway service acts as the primary entry point for Grafana and OpenTelemetry.
Access it within the cluster:
-
http://loki-gateway.80 (in the same namespace)
-
http://loki-gateway.o11y.svc.cluster.local:80 (using the service name and namespace)
-
http://loki-gateway.o11y.svc:80 (using the service name and namespace)
To view its configuration:
$ kubectl -n o11y get service loki-gateway -o yamlConfiguring OpenTelemetry Collector
Example configuration for Loki exporter:
exporters:
# Other exporters...
#(1)
loki:
endpoint: http://loki-gateway:80/loki/api/v1/push
tls:
insecure: true
service:
pipelines:
#(2)
logs/to_opensearch:
receivers: [otlp]
processors: [batch]
exporters: [otlp/data-prepper-logs]
#(3)
logs/to_loki:
receivers: [otlp]
processors: [batch, memory_limiter]
exporters: [loki]| 1 | This configuration sets up the Loki exporter in the OpenTelemetry Collector to send logs to the Loki gateway service. The endpoint specifies the URL of the Loki gateway service, and tls.insecure: true allows insecure connections (useful for local development). |
| 2 | This pipeline processes logs received from the OTLP receiver and sends them to OpenSearch using the Data Prepper exporter. It uses the batch processor to batch logs before sending them. |
| 3 | This pipeline processes logs received from the OTLP receiver and sends them to Loki using the Loki exporter. It also uses the batch processor to batch logs before sending them, and the memory_limiter processor to limit memory usage. |
Configuring Grafana for Loki
To visualize logs in Grafana:
-
Go to Connections > Data Sources.
-
Click "Add data source" > Choose "Loki".
Use the following settings:
-
Name: loki
-
URL: http://loki-gateway
Grafana Loki Data Source
Exploring Logs in Grafana
Use label filters to find logs from a service:
-
Label filters: service_name
-
value: otel-spring-example
Correlating Logs and Traces
In the previous article, we deployed Tempo and configured it to collect traces from the OpenTelemetry Collector. Now, you can correlate logs with traces in Grafana.
For more information on how to set up Tempo, refer to the article on Installing Tempo on Kubernetes.
Now we have Tempo and Loki configured, we can correlate logs with traces in Grafana.
To correlate logs with traces: 1. Ensure Tempo is deployed and configured. 2. In Grafana > Data Sources > Tempo, configure:
In Trace to logs section, configure the following settings:
-
Data source: loki
-
Filter by trace ID: check the box
-
Filter by span ID: check the box
Click on "Save & test" to save the configuration.
Now you can explore traces and logs together in Grafana. When you view a trace, you will see the logs associated with that trace by clicking on the "Logs" tab in the trace view.
Now, when exploring a trace:
-
Click on Logs for this span to view the associated logs.
Now you can see the logs associated with the trace span. You can filter the logs by the trace ID and span ID to narrow down the results.
Correlating logs with traces in Grafana allows you to troubleshoot issues more effectively by providing context for the trace data. You can see the logs that were generated during the execution of a trace, which can help you understand the behavior of your application and identify any issues that may have occurred.
This trace-log correlation enhances debugging by giving full context of application events.
Conclusion
This guide covered the deployment of Grafana Loki on Kubernetes using Helm. We explored both filesystem-based and object storage (MinIO/S3) configurations, integrated Loki with the OpenTelemetry Collector, and configured Grafana to visualize and correlate logs with traces. Loki offers a powerful and scalable approach to centralized logging in cloud-native environments.
📘 View the web version:
Next Steps
-
Configure S3 as the storage backend for Loki to support production-grade deployments with scalable and durable log storage.