Converting Splunk searches into Logscape
Logscape and Splunk share a lot of overlap, and there is one question we get asked quite often by people looking to migrate from Splunk to Logscape.
How do we convert Splunk searches and Workspaces into Logscape?
Unfortunately, there’s no magic cure or just click here style solution. Fortunately it is significantly easier than you think.
We’re going to cover converting Splunk searches into their Logscape equivalent.
In my experience Correlated Alerts are something the average user doesn’t touch on, either thinking that they don’t need them, or believing (falsely) that setting up a correlated alert is much more difficult than it is. While correlated events can be used on almost any form of data, my personal opinion is that they’re at their best when dealing with data such as audit or webserver logs, but truly they will excel in any environment that makes use of error messages or codes. Today, I’m going to walk you through setting up a correlated alert, just to show how easy it is.
Version 3 introduces a new search analytic to Logscape’s arsenal, the Post-Aggregate function. This feature is designed to give the user more control over each individual search, allowing them to perform multiple functions on a value by aliasing the result of one function, into another value which can be given as an argument for another function. Allowing you to chain a value through several analytics to obtain your desired effect.
Today I’m going to walk through an example of how to use Post-Aggregate functions inside Logscape, hopefully it will be both insightful, and show you how Post-Aggregates can be used to improve your own dashboards. We’re already using them inside the Univa Grid Engine app, and some of our own monitoring workspaces. Continue reading
The long awaited version 3 update to Logscape is finally here.
In version 3 we welcome multiple new and exciting features. We’ve improved search performance, zoning and the search UI as well as a series of bug fixes. Version 3 is sure to surprise even the most experienced user. This release is bigger, better and faster! If you want to find out all you need to know about these excellent new features, and how this update will affect you, read on.
If you just want to get started, download it for free right now from our Website.
If you’ve already tried it, why not tell us what you think? We’d love to hear your feedback. Simply message us and let us know.
Logscape 3.0 Pre-Release A new version of the Logscape 3.0 pre-release is available and you can download it here. Continue reading
Recently we’ve been working on creating new learning materials for the release of Logscape 3.0.Materials appropriate for both the Logscape expert and an individual just picking Logscape up for the first time. The first person to be addressed by this was of cof course the beginner, as such here’s a 10 minute introduction to the basics of Logscape 3.0.
Hopefully this help some of our newer users, and keep an eye out for more advanced tutorials!
New in Logscape 3.0
Logscape 3.0 introduces a new feature that makes working with CSV data easier, and faster. Logscape will now automatically generate a datatype from imported CSV data, you’ll be free to immediately build a workspace around your data rather than having to worry about setting up your datatype. Continue reading
Today marks the last in the series of three blogs around Microsoft HPC by guest writer Ben Newton, we hope the articles have helped to demonstrate the time and thought that goes into the development of a Logscape App, for the final section Ben covers the development of the actual app that will run inside the logscape environment. You can find the past articles below. You can find more of Ben’s work on his Github page, or his LinkedIn.
Part one Part Two Continue reading
Today Ben Newton returns for the second in a series of three Blog articles covering his progression through building a monitoring solution for Microsoft HPC through Logscape, todays article covers Data collection, both in where the data was sourced, and how he chose to format the data. You can find more of Ben’s work on his Github page, or his LinkedIn.
Data Collection: Find it, mine it, record it
Data! Data! Data!” he cried impatiently. “I can’t make bricks without clay.
-Sherlock Holmes, The Adventure of the Copper Beeches
Today we have a blog article by Guest writer Ben Newton, Ben manages a HPC Grid where Logscape is used in anger for all their management needs. This is the first of a three part series by Ben on how they use Logscape, and built their monitoring Solution. You can find more of Ben’s work on his github page, or his LinkedIn.
Microsoft HPC Server 2012 – More Compute, More Monitoring
640K ought to be enough for anybody.
– Unknown… but not Bill Gates! Continue reading