Hi,
We would like to use splunk to monitor our ETL informatica logs.. we have more than 1000 wfs running, and its difficult to maintain different logs folders and maintain different drives..
After getting to know about wonders of Splunk, we would like to integrate informatica and direct logs to SPlunk..
Can someone tell if this is possible ? if Yes, how?
also, can you confirm if Splunk has any limitation on the file types it cannot montior? say .bin files?
our informatica logs come in .bin format...
regards,
DG
Informatica 9 onwards, there is a command provided in command reference guide of informatica as:
tail -n +1 -f LOG_FILENAME.bin | $INFA_HOME/server/bin/infacmd.sh convertlogfile -in /dev/stdin -fm text
This will convert binary file into simple text.
Will this send the output to a file which can then be read by splunk?
Heh. It has to send it somewhere, so in theory splunk could monitor that spot.
However, in practice, I would bet that your Informatica DBA/sysadmin/security folks would all prefer to transfer it somewhere else rather than giving splunk direct access to a presumably sensitive location.
Hello
Splunk can only read plain text files, if your logs are in binary format, you would need to convert them to text files, if you have an script to convert the format, the forwarder also can run it and index the outputs afterwards
regards