Activity Feed
- Posted Re: Is there any plan for the Splunk Add-on Support for Microsoft Azure to support reading WADLogsTable? on All Apps and Add-ons. 04-29-2016 08:41 AM
- Posted Is there any plan for the Splunk Add-on Support for Microsoft Azure to support reading WADLogsTable? on All Apps and Add-ons. 04-29-2016 08:13 AM
- Tagged Is there any plan for the Splunk Add-on Support for Microsoft Azure to support reading WADLogsTable? on All Apps and Add-ons. 04-29-2016 08:13 AM
- Tagged Is there any plan for the Splunk Add-on Support for Microsoft Azure to support reading WADLogsTable? on All Apps and Add-ons. 04-29-2016 08:13 AM
- Posted Re: Support for Azure CloudService Application logs from WADLogsTable on All Apps and Add-ons. 04-13-2016 08:47 AM
- Posted How to use a Splunk forwarder directory name (segment) as an event tag? on Getting Data In. 04-11-2016 07:41 AM
- Tagged How to use a Splunk forwarder directory name (segment) as an event tag? on Getting Data In. 04-11-2016 07:41 AM
- Tagged How to use a Splunk forwarder directory name (segment) as an event tag? on Getting Data In. 04-11-2016 07:41 AM
- Tagged How to use a Splunk forwarder directory name (segment) as an event tag? on Getting Data In. 04-11-2016 07:41 AM
- Tagged How to use a Splunk forwarder directory name (segment) as an event tag? on Getting Data In. 04-11-2016 07:41 AM
Topics I've Started
04-29-2016
08:41 AM
Awesome! I will try this thank you Mr. Conger.
... View more
04-29-2016
08:13 AM
Hi guys,
I noticed the Splunk Add-on for Microsoft Azure has been updated on the 25th April, but still no support for reading in the WADLogsTable in the notes.
Is there any plan to support the reading of this critical table as we do a lot of work in Azure and being able to read and alert on this table would be gold.
... View more
04-13-2016
08:47 AM
I'm looking to pull this WADLogsTable table down into splunk for text searching and pattern matches too. Is this something I could bring in readily by editing the add-on? We want to be able to alert and search on the table contents...
Ours is very large though so I'd want to initially only pull down the last 24hours to stop me from killing the companys internet connection..
... View more
04-11-2016
07:41 AM
Hello!
I was wondering how to use a directory name (segment) as an event tag. For example:
C:\bin\code\python\test_system\scoring\results\16\17055079037\some files log files here or in directory's below this.
The system outputs many hundreds of directories at the 17055079037 level. I don't want to segment on host, source, or sourcetype (as I have manually defined these to cut the console spam). I'd just want the 17055079037 level to be reported as an event attribute, so when I open the error log within Splunk, I can readably see that the log file originated from the 17055079037 directory.
I am guessing this is something to do with segmentation, but I don't know how to configure the inputs.conf for this.
Any suggestions gratefully received.
... View more
