Log Insight 3.0: SSL Management
A change has been made in Log Insight 3.0 in regards to how SSL management is handled. Read on to learn more! Background In Log Insight 2.0 clustering was introduced. With Log Insight 2.0 uploading a...
View ArticleLog Insight 3.0 UI: Snapshots
This week, I would like to talk about the new UI features in Log Insight 3.0 and specifically the ones applicable to all users — not just admin users. First up, I would like to show off the new...
View ArticleLog Insight 3.0 UI: Event Types
Log Insight features built-in machine learning capabilities. One of these capabilities is event types. In Log Insight 3.0 a subtle, but important enhancement has been made. Read on to learn more!...
View ArticleLog Insight 3.0 UI: Event Trends
In addition to event types, event trends — another component of Log Insight’s built-in machine learning capabilities — has received an update as well. Read on to learn more. Background With event types...
View ArticleLog Insight 3.0 UI: URL Shortener
When it comes to troubleshooting logs messages, collaboration is critical. As such, Log Insight has always allowed for queries to be shared via a URL. In Log Insight 3.0, this feature has been...
View ArticleLog Insight 3.0 Survey
The Log Insight team needs your input! They have a short survey where they would really appreciate your response to help improve Log Insight. Please take five minutes to fill out this quick survey....
View ArticleLog Insight 3.0 Agents: New Features
In addition to typical bug fixing, the Log Insight 3.0 agents come with a variety of new features and a couple of important changes. In this post, I will highlight what is new. Important Changes Let me...
View ArticleLog Insight 3.0 Agents: SSL Support
Log Insight 3.0 agents support SSL for both the cfapi and syslog protocols. In this post, I will discuss how to configure the agents to properly communicate over SSL. Background By default, the Log...
View ArticleLog Insight 3.0 Agents: Agent Parsers
In my opinion, the coolest new feature in Log Insight 3.0 is agent parsers. In this post I will discuss what they are and why they are important. Extracted Fields Log Insight has always supported the...
View ArticleLog Insight 3.0 Agents: Common Options for Parsers
Now that you know what agent parsers are capable of you are probably wondering how to configure them. In this post, I will start with the basics including the common options for all parsers. Read on to...
View ArticleLog Insight 3.0 Agents: CSV Parser
The first agent parser I want to take a look at is the CSV parser. Read to learn how it works! How the Parser Works The CSV parser is for events that follow a known delimiter-based messaging structure....
View ArticleLog Insight 3.0 Agents: KVP Parser
The second agent parser I want to take a look at is the KVP parser. Read to learn how it works! How the Parser Works The KVP parser is for events that follow a key = value delimiter format. The pieces...
View ArticleLog Insight 3.0 Agents: CLF Parser
The third agent parser I want to take a look at is the CLF parser. Read to learn how it works! How the Parser Works The CLF format is very common for Apache HTTP events, but turns out this format is...
View ArticleLog Insight 3.0 Agents: Timestamp Parser
A different kind of parser available is the timestamp parser. Read to learn how it works! How the Parser Works The timestamp parser is unique from the rest of the parsers in that it only makes sense to...
View ArticleLog Insight 3.0 Agents: Automatic Parser
To wrap up on the parsers, I would like to cover the automatic parser. Read to learn how it works! How the Parser Works The automatic parser makes it possible to parse both the timestamp as well as...
View ArticleLog Insight 3.0 Agents: Parser Examples
Now that you know all about the Log Insight 3.0 agent parsers, it is time for a quiz! Read on to learn more. The quiz is straightforward — I will provide a log example and you tell me which parser to...
View ArticleLog Insight 3.0: Agent Groups
Now that I have talked about the new agent parsers functionality and walked through each of the supported parsers in 3.0, I want to talk about a new server-side option for agents called agent groups....
View ArticleLog Insight 3.0: Content Pack Enhancements
As mentioned in my last post, Log Insight 3.0 features agent groups. Agent groups are powerful, because they allow server-side configuration management of agent configuration. To better facilitate the...
View ArticleLog Insight 3.0: Cluster Page
In Log Insight 3.0 some changes have been made to the Cluster page under the Administration section. In this post I would look to cover these changes. Read on to learn more! Appliance Page? The first...
View ArticleLog Insight 3.0: Matches Operator
I covered query building in Log Insight a long time ago. While the UI has changed significantly since I wrote those posts, the information contained within them remains true to the current version of...
View Article
