I don't understand this at all... we all know that SMF is not a log, it's a whole bunch of strings & mostly numbers... metrics. Why has it become acceptable to send metrics to a log search tool, knowing full well that these are different categories with different solutions. Splunk etc. are meant to collect and search through things like http web server log, not metrics. The information density in a log is low. In SMF, it's very high (there are no fluff words, just metrics which may or may not be of use during a given activity).
On Tuesday, March 5th, 2024 at 00:13, Steve Estle <000005dcac13570d-dmarc-requ...@listserv.ua.edu> wrote: > All, > > We are embarking on an endeavor to explore sending logics to a tool called > Sumologic(sumologic.com). For those who are unaware, Sumologic is a > competitor to Splunk and contains a very powerful real time log parsing > analytics engine which can be used to build dashboards, alerts, and more. My > basic question is has anyone heard of or actually been involved in devising > ways to send ZOS logs into Sumalogic - our initial efforts will be security > related, but for now am just asking if anyone has any experience in this > realm at all? Or maybe you are doing something similar to Splunk? If so, you > can post in forum or feel free to reach directly out to me: > > Thanks much, > > Steve Estle > sest...@gmail.com > 303-817-9954 > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
