Log Drains
This feature may not be available on all plans.
The Log Drains feature allows you to connect site traffic logs, function logs, and edge function logs from Netlify’s CDN to third-party monitoring services for analysis, alerting, and data persistence.
Once you’ve configured a log drain for a site, Netlify batches the site’s log records and posts them to an endpoint in JSON/NDJSON format in near real-time. A configured external monitoring provider receives these records from the intake endpoint and makes them available for processing. The site traffic log output tracks visitor requests for assets and pages, while the function log output tracks information such as function invocations, and the edge function log output tracks edge functions that output console log statements.
# Configure a log drain
To set up a log drain, you must be a Netlify team Owner and have an account and API key provisioned with an external monitoring provider. Netlify supports integration with:
- Datadog
- New Relic
- Axiom
- Azure Monitor
- Sumo Logic
- Logflare
- Amazon Simple Storage Service (Amazon S3)
- General HTTP endpoints
# Datadog
For your selected site, go to Site settings > Log Drains and select Enable a log drain.
Select Datadog as the Log drain service.
Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
Under Service settings, select the Region where your Datadog site is located.
Enter the unique API key for your logging service provider account. Verify that you are entering your API key instead of the Datadog application key.
Optional: Add key/value pairs under Tags to tag your logs with certain attributes. These become query parameters in requests to the logs intake endpoint.
Available keys for Datadog:
Key Tag Description Example value ddtag
tags associated with logs, grouped into a single list with the value ddtags
env:prod
service
name of the application or service generating the log events mysubdomain
Select Connect.
# New Relic
For your selected site, go to Site settings > Log Drains and select Enable a log drain.
Select New Relic as the Log drain service.
Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
Under Service settings, select the Region that applies to your New Relic account.
Enter a License API key, also called
INGEST-LICENSE
, for your New Relic account. Verify that you’re entering your License API key and not your License API key ID or user key.Optional: To add a tag for your log drain, under Tags, enter the
key
andvalue
. Then select Add tag. Any tags you add become query parameters in log drain requests to New Relic.Example tags for New Relic:
Key Value Tag description environment
production
environment type service
mysubdomain
name of the application or service generating the log events
For guided help on optimizing your New Relic dashboard for your site’s logs, install the Netlify Logs quickstart on New Relic.
- Select Connect.
# Axiom
To configure a log drain that sends your site logs to Axiom:
- On Axiom, go to Integrations.
- Install Netlify’s Axiom integration, which opens a prompt to authorize the Axiom app to access Netlify on your behalf.
- Once installed, you’re redirected to configure your Netlify integration on Axiom. Copy the Axiom integration token.
- On Netlify, for your chosen site, go to Site settings > Log Drains and select Enable a log drain.
- Select Axiom as the Log drain service and choose which logs to share in your log drain. You can drain your site’s traffic logs, function logs, and edge function logs.
- Paste the integration token you copied from Axiom.
- Confirm with Connect.
For an overview of reviewing your logs on Axiom, check out Axiom’s Netlify Integration docs.
# Azure Monitor
To send your site’s log drains to Azure Monitor through the Netlify UI:
- On Azure Monitor, from your log analytics workspace, go to
- On Netlify, for your chosen site, go to Site settings > Log Drains. If this is your first log drain for your site, select Enable a log drain.
- Select Azure as your Log drain service and choose which logs to share in your log drain. You can drain your site’s traffic logs, function logs, and edge function logs.
- On Azure, copy your Workspace ID and enter it for your Netlify log drain.
- On Azure, copy your Primary key and enter it for your Netlify log drain.
- Confirm with Connect.
For an overview of reviewing your logs on Azure, check out Azure’s Analytics workspace docs.
# Sumo Logic
To configure a log drain that sends logs to your Sumo Logic account, you need to:
# Configure your HTTP Logs and Metrics Source in Sumo Logic
If you haven’t already, create a hosted collector to collect your data in Sumo Logic.
In the Sumo Logic web app, add and configure your HTTP Logs and Metrics Source using Sumo Logic’s docs.
Ensure that you copy your HTTP Source Address to use in the Netlify UI.
# Set up the log drain in the Netlify UI
For security, Netlify hides the full HTTP Source Address in the Netlify UI. After you configure your log drain, only the base URL is visible in the Netlify UI.
- On Netlify, for your selected site, go to Site settings > Log Drains and select Enable a log drain.
- Select Sumo Logic as the Log drain service.
- Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
- In the Full URL field, enter the HTTP Source Address you copied from Sumo Logic.
- Select Connect.
# Logflare
- For your selected site, go to Site settings > Log Drains and select Enable a log drain.
- Select Logflare as the Log drain service.
- Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
- Under Service settings, enter your Logflare Ingest API key.
- To specify where you want your logs to go, enter the Logflare Source ID for your logs.
- Select Connect.
# Amazon S3
To configure a log drain that sends logs to your Amazon S3 account as Gzip-compressed files, you need to:
# Create an Amazon S3 bucket and set up a bucket policy
- In the AWS Management Console, create an S3 bucket.
- Object Ownership for the bucket should be set to either Bucket owner enforced or Bucket owner preferred.
- Make note of the bucket name to use in your Netlify configuration.
- Go to your bucket’s Permissions and under Bucket policy select Edit.
- Copy and paste the following bucket policy, replacing
YOUR_BUCKET_NAME
with the name of your Amazon S3 bucket:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "NetlifyLogDrains",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::128866310339:role/log-shipper"
},
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::YOUR_BUCKET_NAME/*",
"Condition": {
"StringEquals": {
"s3:x-amz-acl": "bucket-owner-full-control"
}
}
}
]
}
- Select Save Changes.
Bucket lifecycle
For cost control reasons, we recommend deleting logs after a period of 90 days. You can configure your Amazon S3 bucket to delete logs automatically by setting lifecycle rules.
# Configure the log drain in the Netlify UI
- For your selected site, go to Site settings > Log Drains and select Enable a log drain.
- Select Amazon AWS S3 as the Log drain service.
- Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
- Under Service settings, select the Bucket region where your bucket is located.
- Enter your S3 Bucket name.
- Optional: Enter your S3 Bucket path. We recommend using
YOUR_BUCKET_NAME/logs/netlify/
. If no path is specified, the logs will be written to the root of the S3 bucket. - Select Verify bucket and connect.
- Use the provided path to navigate to your S3 bucket’s verification file.
- Copy and paste the contents of the file into the Verification token field, then select Verify.
# General HTTP endpoint
Netlify’s General HTTP endpoint support allows you to set up a custom log drain with any external monitoring provider that accepts log drain requests in JSON or NDJSON format.
To set up a custom log drain, you must provide a full URL of your external monitoring provider’s endpoint. Depending on your external monitoring provider, you can enter your API key as a query parameter in your endpoint or you can enter an Authorization header in the Netlify UI.
For example, this URL includes an API key and a tag as query parameters:
http://YOUR_ENDPOINT_RESOURCE_PATH?api-key=YOUR_API_KEY&environment=production
For security, Netlify hides the full endpoint in the Netlify UI. After you configure your log drain, only the base URL is visible in the Netlify UI.
- For your selected site, go to Site settings > Log Drains and select Enable a log drain.
- Select General HTTP endpoint as the Log drain service.
- Select the Log type. You can drain your site’s traffic logs, function logs, and edge function logs.
- Enter the Full URL for your endpoint, including any optional tags as query parameters. Depending on your external monitoring provider, enter your API key as a query parameter in your endpoint or under Authorization header.
- Select the Log Drain Format that your endpoint accepts.
- Select Connect.
# Edit a log drain
If you need to adjust the settings for an existing log drain, under Site Settings > Log Drains, select Edit settings. Configuration changes become active within approximately five minutes.
To stop sending specific log data to your external monitoring provider, clear the Log type you no longer need and select Verify bucket and save.
# Remove a log drain
To terminate an existing log drain configuration for a site, under Site Settings > Log Drains, select Delete log drain. All log types associated with the site’s log drain will be removed. Saved logs are accessible in your logging service provider account.
# Traffic log output
Drained site traffic logs include the following fields parsed from our CDN logs:
account_id
: ID of the Netlify team that the site belongs to.client_ip
: IP address of the client.content_type
: Content-Type of the request (for example,text/html
).deploy_id
: ID of the deploy (for example,61153ae8b0f6a900088386e8
).duration
: duration of the request in milliseconds.log_type
: indicates the type of log. The value istraffic
.method
: request method.referrer
: referrer on the request.request_id
: Netlify request ID (for example,01FDWR77JMF2DA1CHF5YA6H07C
).request_size
: size of the request in bytes.response_size
: size of the response in bytes.site_id
: ID of the site.status_code
: status code of the HTTP response.timestamp
: timestamp of the request, formatted with RFC 3339 (for example,2021-08-24T18:54:34.831Z
).url
: URL of the request.user_agent
: user-agent that made the request.
# Function log output
Drained function logs include the following fields parsed from our CDN logs:
account_id
: ID of the Netlify team that the function belongs to.deploy_id
: ID of the deploy (for example,61153ae8b0f6a900088386e8
).duration
: amount of time it took for AWS Lambda to execute the function.function_name
: name of the function.function_type
: type of function. The value for function logs isstandard
.level
: level of the log line (for example,INFO
,ERROR
,WARN
,REPORT
).log_message
: log message.log_type
: field indicating the type of log. All function types will have the valuefunctions
.method
: method of the request (for example, GET).path
: path of the request (for example,/.netlify/functions/your-awesome-function
).request_id
: Netlify request ID (for example,01FDWR77JMF2DA1CHF5YA6H07C
).site_id
: ID of the site.status_code
: status code of the HTTP response.timestamp
: timestamp of the request, formatted with RFC 3339 (for example,2021-08-24T18:54:34.831Z
).
Note that function log output is limited to 4 KB total per invocation. If a log’s output exceeds 4 KB, only the last 4 KB of the log is sent to the logging service and the log message will be truncated.
# Edge Function log output
Drained edge function logs include the following fields parsed from our CDN logs:
account_id
: ID of the Netlify team that the edge function belongs to.branch
: name of the branch. This field is only present for non-production branches.deploy_id
: ID of the deploy (for example,61153ae8b0f6a900088386e8
).function_name
: name of the edge function.function_type
: type of function. The value for edge function logs isedge
.level
: level of the log line (for example,INFO
,ERROR
,WARN
,REPORT
).log_type
: field indicating the type of log. All function types, including edge functions, will have the valuefunctions
.request_id
: Netlify request ID (for example,01FDWR77JMF2DA1CHF5YA6H07C
).request_path
: path of the request (for example,/log
).site_id
: ID of the site.timestamp
: timestamp of the request, formatted with RFC 3339 (for example,2021-08-24T18:54:34.831Z
).
Log messages will appear in the content field for your logging service.
Did you find this doc useful?
Your feedback helps us improve our docs.