I have spent last 2 hours searching for this simple scenario on Splunk Answers, without any luck.
Here is the case.
Splunk 6.0.2 (Trial version)
OS : Windows 7, 64 Bit
Data Input : A Log4J file on my local computer
Requirement : Just want to index events which contains the string "[ERROR ]", in my indexer.
Any help will be greatly appreciated.
... View more