My company uses splunk. Our splunk logs reach size in excess of 50+ GB. At midnight splunk compresses this file and then creates a new log file to write data too. That compression takes almost an hour or two hence no data is written since the new file is not created.
What configurations do I need to change so that Splunk will create the new log file and then write data to it, while it compresses the previous days log file?
... View more