Synchronize logs to SeaTable to make logs better visualized

SeaTable provides Restful API, so we can easily write data through HTTP protocol from anywhere. In this article, we mainly introduce how to use SeaTable to record the error logs of various services on the server, realize the visualization of the logs, and prevent the error messages from being ignored.

The main process is as following:

             Filebeat               Python Script
Log files -------------> Redis ------------------> SeaTable

Features include

  • The log is placed in a code block in Markdown format and recorded in the long text column of SeaTable
  • We can use SeaTable’s multi-view function to create multiple different views, each view includes specific filter conditions, which is convenient for us to quickly view data

Let’s introduce the construction process in detail below.

Use filebeat to send logs to Redis

Take Ubuntu 20.04 as an example, use the following command to install filebeat

apt update && apt install filebeat -y

Config filebeat (You can find an example at seatable-syncer/filebeat.yml at main · seatable/seatable-syncer · GitHub):

vim /etc/filebeat/filebeat.yml
  - type: log
      - /opt/seatable/shared/seatable/logs/dtable_web.log
    tags: ["dtable-web"]       
    multiline.pattern: '^[0-9]{4}-[0-9]{2}-[0-9]{2}|^\[[0-9]{4}-[0-9]{2}-[0-9]{2}'
    multiline.negate: true
    multiline.match: after

  - type: log
      - /opt/seatable/shared/seatable/logs/dtable-server.log
    tags: ["dtable-server"]
    multiline.pattern: '^[0-9]{4}-[0-9]{2}-[0-9]{2}|^\[[0-9]{4}-[0-9]{2}-[0-9]{2}'
    multiline.negate: true
    multiline.match: after

  hosts: ["redis host"]
  password: "redis password"
  db: 0
  timeout: 5
    - key: "seatable-error-logs" 
        message: "[ERROR]"

Note: we use multiline match pattern to match multiple lines as a single log item,
the beginning of a log item is 2021-10-12 or [2021-10-12. In the last line message: "[ERROR]", we only send log items containing string “[ERROR]” to Redis.

Finally, start filebeat:

service filebeat start

Reading logs from Redis and save to SeaTable using Python script

Preparing SeaTable base

  1. First, generate an API Token from the base
  2. Create a table with following columns
Name Is first column Type
Service Text column or single select column
Time x Date column with minutes
Log x Long text column

Preparing the script

Download and install the script to /opt/

cd /opt
git clone

Install Python libraries

cd seatable-syncer/log-sync/
pip3 install -r requirements.txt

Modify the configuration file opt/seatable-syncer/log_sync/

# SeaTable
server_url = 'Your SeaTable server URL'
api_token = 'the API token you created'
table_name = 'table name'

# Redis
redis_host = 'your redis host'
redis_db = 0
redis_port = 6379
redis_password = None

Starting the script

python3 can handle log items start with following strings:

2020-01-01 01:02:02
[2020-01-01 01:02:02

If you have logs in other formats, you can modify the script accordingly.

That’s it

With filebeat, Redis and Python scripts, we can collect logs from multiple servers into a base in SeaTable. Through the filtering conditions of the table and the multi-view function, we can easily analyze and view the log.


Hey there,

here are some extensions to this logging approach to seatable:

autostart of log_syncer

if you want to autostart log_syncer you could create a systemd-service file like this. Save this file as /etc/systemd/system/log-sync.service.

Description=SeaTable Log-Syncer

ExecStart=/usr/bin/python3 /opt/seatable-syncer/log-sync/


Now you can use the following commands to start, autostart and get a status of your logging job:

$ systemctl start log_sync
$ systemctl enable log_sync
$ systemctl status log_sync

log dtable-events.log also

to add also dtable-events.log to the log monitoring add the following section to the filebeat.yml config.

  - type: log
      - /opt/seatable/shared/seatable/logs/dtable-events.log
    tags: ["dtable-events ("]
    multiline.pattern: '^[0-9]{4}-[0-9]{2}-[0-9]{2}|^\[[0-9]{4}-[0-9]{2}-[0-9]{2}'
    multiline.negate: true
    multiline.match: after

log nginx/wordpress installations too

this filebeat to seatable logging can easily be enhanced by other systems you are monitoring. Imagine you have a nginx/wordpress installation that you want to add to your log-monitoring also. Just install filebeat and the log_syncer to this system and use the following filebeat.yml config:

  - type: log
      - /var/log/
    tags: ["error.log ("]
    document_type: nginx-error

  hosts: [""]
  password: "this-redis-password-was-removed"
    db: 0
  timeout: 5
    - key: "seatable-web"
        message: "[error]"

logging.level: error
logging.to_files: true
  path: /var/log/filebeat
  name: filebeat
  keepfiles: 7
  permissions: 0644

check the logs of this setup

here are the log files that you can check if something does not work:

  • Redis: /var/log/redis/redis-server.log
  • Filebeat: /var/log/filebeat/filebeat (you can define the path in the filebeat.yml)
  • Log-Sync: journalctl -u log-sync.service

Best regards