Monitoring Splunk
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How do we read logs under the daily format directory?

thirulog
New Member
‎12-04-2017 08:49 AM

I have logs under the daily date format directory

How I ready the logs?

Directory : E:\Ora\DRM\daillyDate\log.txt

Tags (1)
0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 05:49 PM

Options are plenteous, there is also this:

[monitor://E:\Ora\DRM\...\log.txt]
0 Karma
Reply

lycollicott
Motivator
‎12-04-2017 10:48 AM

Monitor the directory E:\Ora\DRM and it will index everything below that.

(NOTE: You can use wildcards, but that doesn't mean you should use wildcards. )

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎12-04-2017 10:47 AM

Wildcards are allowed in file paths. Try

[monitor://E:\Ora\DRM\*\log.txt]
---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 05:49 PM

perhaps missing a path segment there?

0 Karma
Reply

thirulog
New Member
‎12-04-2017 07:06 PM

I have [monitor://E:\Ora\DRM**.txt] but did not work

Daily date directory created for every day and there are 20 logs under the date directory

0 Karma
Reply

woodcock
Esteemed Legend
‎12-04-2017 07:14 PM

I think that he meant this:

[monitor://E:\Ora\DRM\*\*\log.txt]
0 Karma
Reply
Get Updates on the Splunk Community!

What's New in Splunk Enterprise 9.4: Features to Power Your Digital Resilience

Hey Splunky People! We are excited to share the latest updates in Splunk Enterprise 9.4. In this release we ...

Take Your Breath Away with Splunk Risk-Based Alerting (RBA)

WATCH NOW!The Splunk Guide to Risk-Based Alerting is here to empower your SOC like never before. Join Haylee ...

SignalFlow: What? Why? How?

What is SignalFlow? Splunk Observability Cloud’s analytics engine, SignalFlow, opens up a world of in-depth ...