Splunk AppDynamics

Log Analytics

Sandor_Bihary
Path Finder

Hi All!

I am trying to understand the log analytics features.

Can I import any kind of log and do analytics on them? According to the link and picture below I can import networking (switches,routers) and VMware or even LDAP or Load balancer logs as well.

I did read the documentation and did also google searches but I did not find any real description how I can do that. Could you help me to point to a documentation how to do log anayltics for example on switch or LB logs?

https://www.appdynamics.com/product/log-analytics/

On this link I read this:

 

Collect machine data from all sources in real-time to gain insights

    Collect both structured and unstructured data to gain real-time visibility into physical, virtual or cloud infrastructure

    Single pane of glass with Application Performance Management allows full context into application issue

image.png

Labels (1)
Tags (1)
0 Karma
1 Solution

Sandor_Bihary
Path Finder

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

View solution in original post

CommunityUser
Splunk Employee
Splunk Employee

Hi Sandor,

We require the network logs to be sent to a given port. The agent listens to the specified port and collects all the logs, and passes it for processing. The port and host name details are added in the Log Analytics Configuration UI.

You can then extract specific data points for analytics through grok or manual or auto extraction options, along with field management (for renaming, masking, etc actions).

Hope this helps.

Thanks

Sandor_Bihary
Path Finder

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

CommunityUser
Splunk Employee
Splunk Employee

Yes, exactly. You could use business transaction and log correlation functionality to connect the dots, extract more info from the logs related to your application performance.

Regards,

Sandeep

Get Updates on the Splunk Community!

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL  The Splunk AI Assistant for SPL ...

Buttercup Games: Further Dashboarding Techniques (Part 5)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Customers Increasingly Choose Splunk for Observability

For the second year in a row, Splunk was recognized as a Leader in the 2024 Gartner® Magic Quadrant™ for ...