Hello,
I'm attempting to use the free edition but with only collecting data from the local machine I'm filling up my 500MB quota in just a few hours.
I don't know if Splunk works this way but I thought I could cut back on incoming data by filtering out informational log events. That is I would like to accept only warnings and errors.
Is this possible?
... View more