Get real time analytics/metrics data for splunk

nandishnandy
Participant III

Is there any way to get metrics data with anaytics/metrics Queries and push data to splunk for monitoring purpose

Total API traffic (real time)

Top 10 fast/slow performing APIs

Successful/failed API calls

API calls with error
Analysis of failed API calls
Top used API’s
Top used Applications
Top developers
Best and worst performing API’s

Trend chart based on API calls

Regards

Nandeesha

0 3 599
3 REPLIES 3

navjot_k
Participant II

MessageLogging policy can be used to send logs to splunk and then you can extract the data from spunk.

If you want to push specific monitoring data, then you need to write script for that to fetch data from analytics and push it to splunk. Few organisations do similar functionality on scheduled basis where analytical reports are fetched through custom java/node application using management api and report is then published.

You can use the MessageLogging policy for Syslog endpoints, or you can use ServiceCallout if you use the Splunk HTTP Event Collector (HEC). Search here on community for instructions on how to do this.

The right way to do it is to use one of those policies for every API call processed. Probably in the PostClientFlow.

You will need to log such things as :

  • apiproxy.name
  • time taken (subtract client.received.start.timestamp from system.timestamp)
  • API call status (fault or no)
  • application.name, developer.name
  • and etc.

And then in Splunk, you would have to create the appropriate dashboards from the log records you accumulate.

Thanks Dino,

I am trying to send edge cloud platform (not a single api proxy) logs to splunk for centralized logging,is there any tool and scripts available to achieve the same?

Regards

Nandeesha