Getting Data In

How to configure apache access logs generated in access.log_timestamp format in inputs.conf ?

danishdanish1
New Member

Hi ,

We have apache access logs generated in below format .

access.log_2014.11.11 , access.log_2014.11.12 , access.log_2014.11.13 and so on.

For above logs , we have monitor configuration as below in inputs.conf , we also want to include the timestamp part . Please let me know on how to proceed on this .

[monitor://logs/uat3/apache/ssl/access.log]

Thanks.

0 Karma

cpetterborg
SplunkTrust
SplunkTrust
[monitor:///logs/uat3/apache/ssl/access.log*]

or if you need to be more specific:

[monitor:///logs/uat3/apache/ssl/access.log_20*]
0 Karma
Get Updates on the Splunk Community!

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud  In today’s fast-paced digital ...

Observability protocols to know about

Observability protocols define the specifications or formats for collecting, encoding, transporting, and ...

Take Your Breath Away with Splunk Risk-Based Alerting (RBA)

WATCH NOW!The Splunk Guide to Risk-Based Alerting is here to empower your SOC like never before. Join Haylee ...