Splunk AppDynamics
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

Log Analytics

Sandor_Bihary
Path Finder
‎01-25-2019 01:15 AM

Hi All!

I am trying to understand the log analytics features.

Can I import any kind of log and do analytics on them? According to the link and picture below I can import networking (switches,routers) and VMware or even LDAP or Load balancer logs as well.

I did read the documentation and did also google searches but I did not find any real description how I can do that. Could you help me to point to a documentation how to do log anayltics for example on switch or LB logs?

https://www.appdynamics.com/product/log-analytics/

On this link I read this:

 

Collect machine data from all sources in real-time to gain insights

    Collect both structured and unstructured data to gain real-time visibility into physical, virtual or cloud infrastructure

    Single pane of glass with Application Performance Management allows full context into application issue

image.png

Labels (1)
Labels
Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Sandor_Bihary
Path Finder
‎01-25-2019 10:48 AM

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

View solution in original post

Reply
Solved! Jump to solution

CommunityUser
Splunk Employee
Splunk Employee
‎01-25-2019 10:30 AM

Hi Sandor,

We require the network logs to be sent to a given port. The agent listens to the specified port and collects all the logs, and passes it for processing. The port and host name details are added in the Log Analytics Configuration UI.

You can then extract specific data points for analytics through grok or manual or auto extraction options, along with field management (for renaming, masking, etc actions).

Hope this helps.

Thanks

Reply
Solved! Jump to solution
Solution

Sandor_Bihary
Path Finder
‎01-25-2019 10:48 AM

Hi Sandeep,

thank you for the answer.

So, I need to follow the steps described here:

https://docs.appdynamics.com/display/PRO43/Collect+Log+Analytics+Data+from+Syslog+Messages

This is about apache web server, but this can be a switch/storage anything which is able to send log to a syslog server.

So theoretically with this I am able to collect logs from a switch and SAN storage and put the healths events on a dashboard along with the application data. That way I can see on one dashboard if anything wrong with the whole IT infra/app side.

Is that correct?

Best,

Sandor

Reply
Solved! Jump to solution

CommunityUser
Splunk Employee
Splunk Employee
‎01-25-2019 12:08 PM

Yes, exactly. You could use business transaction and log correlation functionality to connect the dots, extract more info from the logs related to your application performance.

Regards,

Sandeep

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...

SplunkTrust Application Period is Officially OPEN!

It's that time, folks! The application/nomination period for the 2026-2027 SplunkTrust is officially open. If ...