Deepmox / AI Tech

learning path

E2E Attachment Test

Testing the full pipeline with attachments

1 chapters 1 audio lessons 1 videos 3 free previews Fresh topic

Start here

1. A_Stethoscope_for_Your_Services

A Stethoscope for Your Services: A Beginner's Guide to Distributed Tracing

Distributed tracing is the practice of following a single request as it bounces across the services that handle it — the most reliable way to turn a vague complaint like "the app is slow" into a specific sentence like "the recommendation service added 1.4 seconds."

Key Takeaways

  • A trace is the full story of one request; a span is one chapter inside that story.
  • Distributed tracing exists because modern applications are not one program — they are dozens of small programs talking to each other, and traditional logs cannot reconstruct what happened between them.
  • The single most useful real-world analogy is a package with a tracking number: every scan writes a timestamp, every handler leaves a record, and you can replay the entire journey after the fact.
  • Three practical habits matter more than any tool choice: name your spans consistently, capture the minimum useful context, and use sampling deliberately instead of capturing everything.
  • You do not need to instrument every service on day one — start with the request path users actually feel, then expand outward.

Start with the symptom

You get paged at 9:14 PM. A user reports that checkout is taking eight seconds. Your dashboard says the API is healthy. The database CPU is calm. The cache hit rate is fine. Nothing on any single graph looks wrong. And yet the user is right — something, somewhere, is slow.

If you have ever stared at a wall of dashboards during an incident like this and felt that you were looking at the wrong layer of reality, you already understand why distributed tracing was invented. Dashboards summarize what is true on average across thousands of requests. When one specific request goes wrong, averages lie.

What you actually want, in that moment, is the diary of one request. You want to know which service it entered first, what it called next, how long each step took, and where the time went. That diary is a trace. The skill of reading and producing those diaries is distributed tracing.

Here is the blunt version of the conclusion before we get into the mechanism: distributed tracing is not a luxury observability tool for sophisticated teams. It is the only observability tool that survives the move from monolithic applications to systems built from dozens of small services. Logs are still essential. Metrics are still essential. But neither of them answers "what happened to this one user's request?" Tracing is the tool that fills that gap.

The one analogy you actually need

Imagine you ship a physical package across the country. The sender puts a tracking number on it. From that moment, every person who touches the package scans it: the warehouse that receives it, the truck that loads it, the sorting facility that routes it, the driver who delivers it. Each scan records three things: where, when, and (sometimes) what condition the package was in.

If the recipient calls and says "my package never arrived," you do not panic. You pull up the tracking number and read the chain of scans. You see that it arrived in the regional hub at 3:00 PM, then sat on a conveyor belt for 14 hours, then got rerouted, then was finally delivered two days late. You did not need to be there for any of it. The scans, taken together, are a faithful record of the journey.

That is exactly what a distributed trace is. The package is one user request — say, "load the homepage." The tracking number is the trace ID, a unique identifier generated the moment the request enters your system. Every scan is a span: a record of one unit of work with a start time, an end time, a name, and an ID. And every span carries its parent's ID, which is how you reconstruct the journey.

When the tracking number shows up at every handoff, the chain is complete. When one handler forgets to scan, you have a gap in the story. The discipline of distributed tracing is, fundamentally, the discipline of scanning the package at every handoff.

flowchart TD
    U[User clicks "Checkout"] --> A[API Gateway<br/>span: 12ms]
    A --> B[Auth Service<br/>span: 34ms]
    A --> C[Cart Service<br/>span: 89ms]
    C --> D[Inventory Service<br/>span: 140ms]
    C --> E[Pricing Service<br/>span: 22ms]
    A --> F[Payment Service<br/>span: 1,420ms]
    F --> G[Bank API<br/>span: 1,310ms]

Each box is one span. The arrows are the parent–child relationships. The number in milliseconds is how long that piece of work actually took. With a trace like this in hand, you do not need a war room to find the cause of the eight-second checkout. You point at the payment service and you are done.

Spans, traces, and context: the vocabulary

The terms sound technical, but they map onto ordinary experience.

A **trace*

9m / Article + audio + video