I am trying to setup Splunk to monitor some network gear. I have installed CentOS 6 - Workstation configuration. Splunk is giving an error about needing 11mb on the / file system.I in... [by nutterr]
I currently have a server in my home lab running Splunk, really love it. I'm soon going to have another server in the EC2 cloud, and I'd love to be able to monitor that using Splunk, hopefully though the primary Splunk server I already have setup.
Now, I don't plan on having a VPN connection set up between the two servers, I don't have the proper hardware to allow that currently sadly.
I'm fail to generates a DD-WRT log to Splunk. While I did enable syslog and log management at DD-WRT, also specify the remote server which is abc.com:8000. Therefore, I have open the UDP port as 514 on my router.
In my Splunk, I created a syslog over the UDP and giving my UDP port which I doing the port forwarding on my router, but I'm still unable to get any log from router to Splunk.
From the above input I want to extract the file names only .
Basically I want to extract anything after 4th slash (/) , as the file will always be under third directory .