Alerting

Splunk and monitoring errors in webmethods

RobertDSM
New Member

Hello,

We are currently using e-mail(errors are mailed from the database based on an errorhandling framework) functionality to monitor our errors and alerts in webmethods.
We do this so we can keep track of what was handeld (marked read) and what wasn't.

Does splunk offer a method to also show in realtime errors (if we would link it to the same database) and provide a read/unread functionality?

Thanks,

Robert

0 Karma

diasna1
New Member

Hello Robert,
If you would like a solution to get full visibility over the state of your ESB and connected IT systems, you must check ESI-Enterprise Service Intelligence (https://border-innovation.com/products/enterprise-service-intelligence).

Built on Splunk, ESI monitors and manages your webMethods services. ESI captures the service execution data and uses Splunk to process it in real-time, building a live representation of what is happening on your ESB and connected IT Systems. This means you can see the errors per Cluster, System or Service and also error typification.

You can build your own Splunk alerts on top of that data, but what usually happens is that the volume of data that is being generated continuously is most likely huge... since dealing with all this complexity and data volume is overwhelming for humans, ESI uses AI and Machine Learning algorithms to direct attention to where it is needed.
Doing the lifecycle of error handling and continuous improvement is done in connection with a Trello board where these issues can be registered and tracked.

0 Karma

sdaniels
Splunk Employee
Splunk Employee

You have several options for getting the data into Splunk either via UDP/TCP syslog, having Splunk monitor a file where you are constantly dumping your web methods errors or use the Splunk DB Connect app to query the database and pull that data into Splunk for you. I have some customers that have Splunk monitor the web methods log files and that gives them enough information but for your case maybe not.

I'm not sure what you mean by the read/unread functionality but you'll be able to track all webmethod errors/alerts in Splunk in order to understand what has happened. You can trend the data, perform statistics and proactively get alerts.

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...