splunk-connect-for-syslog icon indicating copy to clipboard operation
splunk-connect-for-syslog copied to clipboard

Published 20 hours ago verified publisher icon splunk

Documentation issues

Open rjha-splunk opened this issue 2 years ago • 2 comments

Please don't close and use this to report your documentation issues: e.g. https://splunk.github.io/splunk-connect-for-syslog/1566/gettingstarted/quickstart_guide/

rjha-splunk avatar May 16 '22 14:05 rjha-splunk

I think this information is not reflected in the documentation but helps tremendously: https://splunk-usergroups.slack.com/archives/CNV918JCQ/p1648658161334779?thread_ts=1647621045.564949&cid=CNV918JCQ

for any vendor/product source _nix_syslog can be appended to route the fall through to the proper index

I used this in splunk_metadata.csv for routing to a different index vmware_vsphere_nix_syslog,index,virtualization

ehlo550 avatar May 17 '22 07:05 ehlo550

code block for timezone is broken: https://splunk.github.io/splunk-connect-for-syslog/main/troubleshooting/troubleshoot_resources/#fix-timezone

ehlo550 avatar May 17 '22 07:05 ehlo550