Has anyone used configured splunk to monitor their WHM /cPanel web servers. Did they encounter any problems with the forwarder installation particularly when WHM released updates to Apache/My SQL etc
I just released an app to monitor HTTP WEB traffic from raw Apache logs generated by WHM/Cpanel-based servers:
Did you ever get this setup and working?
As long as the location of the log files doesn't change, any CPanel updates pushed shouldn't really have an impact on Splunk and forwarding. What could be an issue, is if they changed the log format - ie. you are currently parsing Apache logs based on the CLF and they push out a change that implements a different format. In my many (10+) years of experience with CPanel, I've never seen them do that before.