Links#
https://docs.victoriametrics.com/victorialogs/
https://docs.victoriametrics.com/victorialogs/quickstart/
https://docs.victoriametrics.com/victorialogs/querying/
https://docs.victoriametrics.com/victorialogs/data-ingestion/
https://docs.victoriametrics.com/victorialogs/security-and-lb/
https://docs.victoriametrics.com/victorialogs/metrics/
https://docs.victoriametrics.com/victorialogs/cluster/1. Important Points#
VictoriaLogs 是 VictoriaMetrics 体系里的 log store,主打高吞吐、低资源占用、查询体验直接。它适合把应用日志、平台日志和审计日志集中到一个可查询的日志系统里。
适合:
application stdout/stderr logs
platform logs / ECS logs / host logs
log search and incident investigation
high-volume append-only log storage
simple operational model with HTTP ingestion and LogSQL query
不适合:
想直接替代完整 SIEM 的场景
不愿意自己管 auth / TLS / retention / routing
需要复杂规则引擎但又不想加代理层核心原则:
private network first
access control should be explicit
UI and query path should use the same protected entrypoint
logs should carry stable stream fields like service / env / cluster
high-cardinality fields should be controlled at ingestion time2. Main Surfaces#
| Surface | Purpose | Notes |
|---|---|---|
| Ingestion | receive logs | JSON line, Elasticsearch bulk, Loki JSON, OTLP, syslog, collectors |
| Query | search logs | LogSQL at /select/logsql/query |
| UI | browse logs | Web UI at /select/vmui/ |
| Access Control | protect ingestion/query | Basic Auth, vmauth, mTLS in enterprise deployments |
| Scaling | multi-node / HA | cluster or replicated single-node setups |
3. Files In This Section#
Access and auth:
Access.md
Deployment / local setup:
Setup.md
TLS:
TLS.md
ECS collection scenario:
ECS.md