Stack Overflow
Stack Overflow

Questions tagged [sumologic]

Sumo Logic is a cloud-based log management and analytics service.

116 questions
39
votes
2 answers

Terraform: configuring cloudwatch log subscription delivery to lambda?

I need to ship my cloudwatch logs to a log analysis service. I've followed along with these articles here and here and got it working by hand, no worries. Now I'm trying to automate all this with Terraform (roles/policies, security groups,…
Shorn
  • 19,077
  • 15
  • 90
  • 168
8
votes
0 answers

How do you get the length of an array in sumologic?

I am parsing json fields from my logs, in some of which I have arrays. Sumo seems to understand arrays fine, but I don't see a method of extracting the number of items in an array. (length, count, etc.) length seems to be for character count only.…
Ryan Ore
  • 1,315
  • 17
  • 23
4
votes
1 answer

In Sumo Logic, how do I get a list of folders off the root folder?

Using the Sumo Logic API, /api/v2/content/folders/{id} works and gives me the parentId. hitting the same endpoint for a folder off the root folder gives a parentId. however hitting the same endpoint with that id errors with "Content with the given…
aquaone
  • 61
  • 2
4
votes
1 answer

Why use sumologic over aws cloudwatch?

We have our applications (Map Reduce Jobs, microservices) completely running out of AWS. We intend to use a single service for viewing (for debug purposes), monitoring and alarms (notifications based on a threshold) on logs. Is there any specific…
Vinod Jayachandran
  • 3,726
  • 8
  • 51
  • 88
4
votes
1 answer

In Sumo Logic, how to search for logs matching a regular expression?

I'm trying to do a Sumo Logic search for logs matching the following regular expression: "Authorization \d+ for story is not voided. Story not removed" That is, the \d+ consists of one or more digits, but it doesn't matter what they are…
Kurt Peek
  • 52,165
  • 91
  • 301
  • 526
4
votes
0 answers

Sumo Logic: Structured Logging Support?

Does Sumo Logic support structured logging (.ie message templates, message template hashing, property mapping, etc)? This is supported by Seq and Splunk, but so far all I see is the ability to log as JSON and use the json pipe to manipulate it...
Sheldon Cooper
  • 627
  • 4
  • 15
4
votes
2 answers

Sumologic - split JSON array into multiple records

I am passing a JSON array object in the HTTP POST as [{"level":"INFO","data": "Test 1"},{"level":"INFO","data": "Test 2"}] This message is seen as 1 object/log message in SumoLogic. How can I tell SumoLogic to consider each JSON object as an…
user1722043
  • 145
  • 3
  • 11
4
votes
1 answer

Sumologic "full outer join" on transaction id

Is there some way to get full outer join functionality with sumologic? The JOIN operator seems to give inner join I have a logstream with stageA and stageB and I want to identify where there is a logline for stageA but not stageB for a shared…
smashbourne
  • 455
  • 3
  • 16
4
votes
1 answer

SumoLogic RESTFul API C# client

Is there any C# client anyone know about that we can use to run queries against SumoLogic? I see they have a Java Client but cannot find a corresponding C# client.
Klaus Nji
  • 18,107
  • 29
  • 105
  • 185
3
votes
1 answer

How to count the occurrences of a regex match over time in sumologic?

I have logs that have a particular error string that I would like to capture. I want to track the total errors over time and not care about any particular error because the error message contains an id which means every error is seen as…
user3162553
  • 2,699
  • 3
  • 37
  • 61
3
votes
2 answers

Sumo Logic: Count every matching string within a field

I have a parsed field and I need to count the number of times a given string appears within it. It seems relatively simple, but I've been searching through Sumo documentation and now I'm not sure this is even possible. Please help!
admoore
  • 71
  • 1
  • 6
3
votes
1 answer

How to create an alert the log fields based on the percentage of failures?

I have logging done on sumologic. The log JSON contains the response time of the request. Let it be a JSON key whose name is "response_time". Each request is identified by unique ID , denoted by JSON key "request_id". and a URL denoted by JSON key…
user9920500
  • 606
  • 7
  • 21
3
votes
1 answer

How to share file or directory with other container on ECS?

I have a Sumologic log collector which is a generic log collector. I want the log collector to see logs and a config file from a different container. How do I accomplish this?
wonton
  • 7,568
  • 9
  • 56
  • 93
3
votes
2 answers

How to exclude the time field from Sumo Logic results?

How do I exclude the Time (_messagetime) metadata field from my result set? I've tried: field -_messagetime But it gives me the error Field _messagetime not found, please check the spelling and try again. Using: fields -time does not remove the…
ilitirit
  • 16,016
  • 18
  • 72
  • 111
3
votes
3 answers

Search query in Sumologic - Contains

I'm a bit lost with a search query in Sumologic. I need to get logs where _sourceHost contains production In case of SQL it looked like this WHERE app="my-app" AND _sourceHost LIKE "%production%" Does somebody knows if it's possible in Sumologic?
Vitalii
  • 10,091
  • 18
  • 83
  • 151
1
2 3 4 5 6 7 8