Monitor request and response using Splunk enterpri...

KavinVicky · ‎10-27-2021

Hi All,

I have an application running on localhost. Its basically an API. So when I trigger a request using postman, the application connects to azure and downloads a file. Can this process be monitored by Splunk such that I can see the requests and response as logs in Splunk enterprise.

Basically, I need the logs of the request and response of the application running on my localhost. Which of Splunk features supports this kind of functionality?

gcusello · ‎10-27-2021

HI @KavinVicky,

i suppose that your application writes its logs in a text files.

Using Splunk you can read the content of these files, index them and then create your searches to find any errors or messages or other.

If your logs aren't structured (pairs field_name=field_value) you can extract the fields to use in your searches, dashboards and reports.

In addition I hint to see in apps.splunk.com, if there's an App and/or an Add-On for the system you have to monitor, to avoid to discover the hot water!

Ciao.

Giuseppe

Monitor request and response using Splunk enterprise

configuration

development

Tech Talk Recap | Mastering Threat Hunting

Observability for AI Applications: Troubleshooting Latency

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

Are you a member of the Splunk Community?