Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Apache web log analysis

jeffatmoodleroo
Engager
‎05-25-2011 08:47 AM

New to Splunk.

Goal: Create an Apache access_log analysis that lists page views, and other useful access log analysis stuff.

Is there a plugin or app or recommended configuration or search that I can use to get "page views" similar to what would be produced if I ran my Apache access logs through a web log analysis tool?

I know all the background and what "page views" mean and how they are meaningless for a stateless protocol like HTTP, etc. etc., so I'm not asking about that. I'm just asking for a way to configure Splunk or otherwise process my access logs in a way that generates something that could be called "page views"

Failing that, is there a way to export all original source records generated from my search? I have a clustered web farm and it would be great if Splunk could do this for me.

Thank you,

JDS

Tags (1)
Reply

ten_yard_fight
Path Finder
‎12-13-2011 09:44 AM

I'm a Splunk noob and also looking for a way to get web statistics, similar to the way I've been doing it using Analog (log analyzer)....So far, I understand it is possible to do this in Splunk but its not trivial.

Reply

sideview
SplunkTrust
SplunkTrust
‎05-25-2011 01:46 PM

Note: there were two other questions that were exact duplicates of this one so I went ahead as a moderator and deleted them.

0 Karma
Reply

sideview
SplunkTrust
SplunkTrust
‎05-25-2011 12:47 PM

Well I'm a bit biased since I created it, but I would check out the Sideview Web Analytics app

It allows you to search through your access logs, roll them up into distinct pages and useragents and referrers, and drilldown from list views to detail views and pivot around any which way you like.

You can generate custom reports using not just the default access fields that Splunk extracts, but built on statistics from any key value pairs that happen to be present in your URLs.

And in the newest version it also integrates with various other Splunk apps that provide geolocation functionality, so you can drilldown and pivot around cities and countries just as easily as clientips and status codes.

Reply
Register for .conf25!
Get Updates on the Splunk Community!

New in Splunk Observability Cloud: Automated Archiving for Unused Metrics

Automated Archival is a new capability within Metrics Management; which is a robust usage & cost optimization ...

Calling All Security Pros: Ready to Race Through Boston?

Hey Splunkers, .conf25 is heading to Boston and we’re kicking things off with something bold, competitive, and ...

What's New in Splunk Observability - July 2025

What’s New?  We are excited to announce the latest enhancements to Splunk Observability Cloud as well as what ...
Top