Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to configure apache access logs generated in access.log_timestamp format in inputs.conf ?

danishdanish1
New Member
‎11-17-2014 01:49 AM

Hi ,

We have apache access logs generated in below format .

access.log_2014.11.11 , access.log_2014.11.12 , access.log_2014.11.13 and so on.

For above logs , we have monitor configuration as below in inputs.conf , we also want to include the timestamp part . Please let me know on how to proceed on this .

[monitor://logs/uat3/apache/ssl/access.log]

Thanks.

0 Karma
Reply

cpetterborg
SplunkTrust
SplunkTrust
‎11-17-2014 06:54 AM 
[monitor:///logs/uat3/apache/ssl/access.log*]

or if you need to be more specific:

[monitor:///logs/uat3/apache/ssl/access.log_20*]
0 Karma
Reply
Register for .conf25!
Get Updates on the Splunk Community!

Community Content Calendar, August edition

In the dynamic world of cybersecurity, staying ahead means constantly solving new puzzles and optimizing your ...

Pro Tips for First-Time .conf Attendees: Advice from SplunkTrust

Heading to your first .Conf? You’re in for an unforgettable ride — learning, networking, swag collecting, ...

Introducing Splunk 10.0: Smarter, Faster, and More Powerful Than Ever

Whether you're managing complex deployments or looking to future-proof your data infrastructure, this session ...
Top