Monitoring Splunk
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How do we read logs under the daily format directory?

thirulog
New Member
‎12-04-2017 08:49 AM

I have logs under the daily date format directory

How I ready the logs?

Directory : E:\Ora\DRM\daillyDate\log.txt

Tags (1)
0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 05:49 PM

Options are plenteous, there is also this:

[monitor://E:\Ora\DRM\...\log.txt]
0 Karma
Reply

lycollicott
Motivator
‎12-04-2017 10:48 AM

Monitor the directory E:\Ora\DRM and it will index everything below that.

(NOTE: You can use wildcards, but that doesn't mean you should use wildcards. )

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎12-04-2017 10:47 AM

Wildcards are allowed in file paths. Try

[monitor://E:\Ora\DRM\*\log.txt]
---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 05:49 PM

perhaps missing a path segment there?

0 Karma
Reply

thirulog
New Member
‎12-04-2017 07:06 PM

I have [monitor://E:\Ora\DRM**.txt] but did not work

Daily date directory created for every day and there are 20 logs under the date directory

0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 07:14 PM

I think that he meant this:

[monitor://E:\Ora\DRM\*\*\log.txt]
0 Karma
Reply
Get Updates on the Splunk Community!

Access Tokens Page - New & Improved

Splunk Observability Cloud recently launched an improved design for the access tokens page for better ...

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

🍂 Fall into November with a fresh lineup of Community Office Hours, Tech Talks, and Webinars we’ve ...

Transform your security operations with Splunk Enterprise Security

Hi Splunk Community, Splunk Platform has set a great foundation for your security operations. With the ...