Splunk Add-on for Microsoft Cloud Services, splunk...

All Apps and Add-ons

I am using Splunk Add-on for Microsoft Cloud Services to ingest .gz log files from blob storage.

When I look in the index for these logs.gz, all I see is garble. The source indicates .gz, but I don't understand why Splunk cannot unzip and read it.

Here is a sample...

�Y�Q[��MK�@����%��k6�����    I{YD�x��R��L�����0�3sN��0<���&�R�Tf��B����ZICB�Tt�a�̛۪X��.�6ܶ���n���Pn�����u<��ٿ������ܺ+�k��<ɕ��'���C�"��M]U����0�� �0�A�O��P��y��N  bLNM&;�H.����f���f��!�S�F�B}x|3�>��a�k$3;��[`v�!7gg�ah�����"�o�)!��z<[��,��S�0ة�|����
-�s�


source = logs/20180720-11_0.gz

Please advise.

Thank you

Get Updates on the Splunk Community!

Security Highlights | November 2022 Newsletter

November 2022 2022 Gartner Magic Quadrant for SIEM: Splunk Named a Leader for the 9th Year in a RowSplunk is ...

Platform Highlights | November 2022 Newsletter

November 2022 Skill Up on Splunk with our New Builder Tech Talk SeriesCan you build it? Yes you can! *play ...

Splunk Education - Fast Start Program!

Welcome to Splunk Education! Splunk training programs are designed to enable you to get started quickly and ...