25th Anniversary Savings | 25% Off Dedicated Servers*Shop Now
25th Anniversary Savings | 25% Off VPS Hosting* †††Shop Now
Dedicated Hosting Deals | From $99/moShop Now
Earn hosting credits and a chance to win an Amazon gift card when you refer friends to Liquid Web!Read our promo rules

How To: Watch Server Logs in Real Time

Reading Time: 2 minutes

Servers do a fantastic job of writing down in log files what is happening right that moment. While going back and reading logs later to determine what happened in the past is helpful, it is also useful to watch logs in real time. Linux provides a command line tool that lets us do just that: tail.

A Brief Introduction to Tail

The primary purpose of tail is to grab the last few lines of a file (ten lines by default). To do so with any file would look like this:

tail example.txt

Tail also gives us a way to watch files that are updated by other programs in real time: the -f flag.

tail -f example.log

While the -f flag is not exclusively for log files, it is the most common use case.

When you are through following the log, you will need to press the Control and c keys at the same time in order to stop the tail process.

Good Times to Tail: Apache

Suppose there is a link on your site that, every time you click on it, gives you an Apache error. Depending on how your site is coded, the error page may not provide you with much information beyond the fact that there is an error message. First, start tailing the error log (n.b.: the following examples assume you have a cPanel server):

tail -f /usr/local/apache/logs/error_log

If the log is not updating frequently, it is a good idea to hit the spacebar a few times so the error you are trying to reproduce is set apart from previous errors. Then, go back to your browser and click on the link that was giving you the error. It should provide an entry in the error log that matches what you have seen in the browser. This is a surefire way to verify that the log entry corresponds to clicking on that particular link on the site.

Good Times to Tail: Exim

Another use for tail -f can just be to get a broad overview to see if something is wrong. Often, if you see the same error repeated over and over again in a log file, you can get an indication of a server-wide problem.

Perhaps you are starting to hear multiple complaints that email addresses over several domains on your cPanel server are not receiving mail. A quick

tail -f /var/log/exim_mainlog

could show you in real time that multiple email accounts are all receiving the same error.

As always, if you find an error you are not sure how to approach, our Heroic Support Team is always available at the contact information below.

About the Author: Patrick Hawkins

Patrick Hawkins is a former Test Engineer and Managed WordPress admin with Liquid Web

Refer a Friend
Get 33% off the first 3 months on a new Dedicated server!
Categories
Have Some Questions?

Our Sales and Support teams are available 24 hours by phone or e-mail to assist.

1.800.580.4985
1.517.322.0434

Latest Articles

Tutorials

How to Edit the PHP Memory for Your WordPress Site via WP Toolkit

Read Article
Hosting Basics

What is CGI-Bin and What Does it Do?

Read Article
Featured Articles

Top 10 Password Security Standards

Read Article
Security

Top 10 Password Security Standards

Read Article
WHM + cPanel

How to Use the WP Toolkit to Secure and Update WordPress

Read Article