Splunk AppDynamics
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Log Analytics

Sandor_Bihary
Path Finder
‎01-25-2019 01:15 AM

Hi All!

I am trying to understand the log analytics features.

Can I import any kind of log and do analytics on them? According to the link and picture below I can import networking (switches,routers) and VMware or even LDAP or Load balancer logs as well.

I did read the documentation and did also google searches but I did not find any real description how I can do that. Could you help me to point to a documentation how to do log anayltics for example on switch or LB logs?

https://www.appdynamics.com/product/log-analytics/

On this link I read this:

 

Collect machine data from all sources in real-time to gain insights

    Collect both structured and unstructured data to gain real-time visibility into physical, virtual or cloud infrastructure

    Single pane of glass with Application Performance Management allows full context into application issue

image.png

Labels (1)
Labels
Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Sandor_Bihary
Path Finder
‎01-25-2019 10:48 AM

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

View solution in original post

Reply
Solved! Jump to solution

CommunityUser
Splunk Employee
Splunk Employee
‎01-25-2019 10:30 AM

Hi Sandor,

We require the network logs to be sent to a given port. The agent listens to the specified port and collects all the logs, and passes it for processing. The port and host name details are added in the Log Analytics Configuration UI.

You can then extract specific data points for analytics through grok or manual or auto extraction options, along with field management (for renaming, masking, etc actions).

Hope this helps.

Thanks

Reply
Solved! Jump to solution
Solution

Sandor_Bihary
Path Finder
‎01-25-2019 10:48 AM

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

Reply
Solved! Jump to solution

CommunityUser
Splunk Employee
Splunk Employee
‎01-25-2019 12:08 PM

Yes, exactly. You could use business transaction and log correlation functionality to connect the dots, extract more info from the logs related to your application performance.

Regards,

Sandeep

Reply
Get Updates on the Splunk Community!

Get Schooled with Splunk Education: Explore Our Latest Courses

At Splunk Education, we’re dedicated to providing incredible learning experiences that cater to every skill ...

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL  The Splunk AI Assistant for SPL ...

Buttercup Games: Further Dashboarding Techniques (Part 5)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...