Install Splunk package
do the following steps:
- Go to splunk instance's home page http://localhost:8000/
- Go to splunk's menu "Apps->Manage apps"
- Click a button "Install app from file"
- Click a button "Browse" then navigate through dialog window to the folder with splunk application package
- Choose a file FixEdgeViewer.*.tar.gz (in place of * should be suffix appropriate to your system - such as Windows or Linux) then click "Open"
- Click "Upload" to install application into splunk server
- unpack app package into splunk application directory like %SPLUNK_HOME%\etc\app or $SPLUNK_HOME/etc/app
- restart splunk instance.
- Find in unpacked directory and edit inputs.conf: you should correct here your hostname with FixEdge installation and path to log file to monitor by splunk
- For windows installation:
host = WINDOWSHOSTNAME
- For Linux installation:
host = LINUXHOSTNAME
- restart Splunk
Now you can go to Splunk instance's home page. There should be button named "FixEdgeViewer".
By clicking it you now can view FixEdge.log of your FixEdge instance:
This app allows you to filter log events by criteria such as category, severity, their combinations or custom filter expression. Also you can set maximum amount of records to see in search result and time period you look up through. Also for convenience this app has some filter presets (predefined criteria combinations). You can further inspect the context of some event by clicking on a row in a selection table.