Seq is extremely fast and easy to set up in its default configuration, and going to production isn't much harder. There are a few things to take care of that will ensure smooth, secure operation of Seq as a critical part of your operations infrastructure.
Use the handy checklist below to make sure nothing is missed.
Find out more
Purchase a Multi-User License
For deployments used by more than one person, a multi-user Seq license will be needed.
Seq needs enough hardware capacity to perform under the expected load. There are some rules of thumb to help make an initial estimate.
Windows Server 2012 R2 or better is needed.
Choose a Storage Location
Choose a location on disk where Seq will store log data. On cloud VMs, an option with local redundancy is recommended (e.g. an attached data disk on Azure).
Obtain and Install an SSL Certificate
Unless SSL is terminated at a load balancer, a certificate will be needed for the domain Seq is hosted on.
Install Seq from MSI on the target server.
Set up a Service Account
It is best practice to use an unprivileged machine account to run the Seq service. This should be a local Windows account on the target server (by default Local System is used otherwise).
Bind the SSL Certificate
The SSL certificate must be associated with the port used by Seq. This is done with the
Configure an Ingestion Port
If the server accepts events from the open Internet, setting up a dedicated port for ingestion can assist with firewall/load balancer/security group configuration.
Set a Canonical URI
If the server is behind a load balancer/reverse proxy, set
Save your Secret Encryption Key
On the Seq server, run
If you haven't already, run
Import your Seq License
Paste your Seq license key into Settings > License and save changes.
Under Settings > Users, enable authentication and set up the admin user account.
Configure the Backup Location
Under Settings > Backup, make sure daily backups are stored to an appropriate drive.
Require API Keys
We recommend all apps logging to Seq use a distinct API key; enforce this under Settings > API Keys.
Configure Retention Policies
Make sure at least one retention policy is configured, so that disk space isn't exhausted.
Exclude Log Storage from Virus Scanning
Seq stores log data in the
Open ports in Windows Firewall
For the Seq UI and ingestion endpoints to be visible across the network, the ports on which Seq is served need to be opened in Windows Firewall (or your chosen firewall software)
Remember that we're here to help if you get stuck at any point.
Check out our Azure installation guide if you're installing Seq in Microsoft Azure.
Updated 8 months ago