Hiii guys,
Actually i dont know anything about log insight. I have a database with huge amount of data. My friend suggested me to use VMware's log insight tool.So i hav downloaded the Beta version from the Vmware sight.The downloaded file is in .ovf format. And now i dont know how to install it in linux and how to use it.Please help me
We have 3Gb index license of splunk - how would the insight price compare to this?
About 300 syslog sources
thanks
We currently use the free vSphere Syslog Collector to collect the syslogs from our ESXi hosts. We do this so we have historical logs (as you know, the logs on an ESXi host get overwritten fairly quickly) in case we need to troubleshoot something or upload log files to VMware support, . I'm wondering if there currently is or will be functionality within VMware vCenter Log Insight to be able to export the log files for a specific host so that we could just use the logs files from Log Insight if we need to upload files for VMware Support and not have to have the hosts logging to vSphere Syslog Collector in addition to Log Insight.
Thanks, Mike
We are running the 1.0-beta virtual appliance and I've been noticing that the virtual appliance will fall off the network periodically for a short time. I've had constant pings going to it and it will just stop responding for anywhere from a few seconds to a number of minutes. You can also see in the attached screen shot where the data is missing within the UI. I know we aren't having issues with our ESXi hosts or dvSwitch because there are lots of other VMs running on the same ESXi host and the same VLAN and they aren't having network connectivity issues. Anyone else experiencing this?
Hello,
Is it possible to upgrade from beta to the GA version?
Regards
hans
Hi Guys
I am keen to try this product however i already have a syslog solution in place using Kiwi syslog.
Would i be able to point Log Insight manager to the Kiwi server ?
Regards
Firoze
I know its a bit spammy, but if you follow us on Twitter, you'll receive a link which will sign you up for a license for 5 free OS Images. For more information, see http://twitter.com/vmloginsight.
Bill Roth, VMware
Are you looking for the Evaluation Version of Log Insight? Go here: https://www.vmware.com/go/try-log-insight.
I added this while we get this listed on other areas on the web site.
Bill Roth
VMware.
Hi,
Atm we use splunk to monitor our pfsense boxes.
It would be very nice if we could do that with vcenter log insight.
But the problem is this:
pfsense send out the following:
| Sep 9 15:26:46 | pf: 192.168.99.8.64592 > 80.239.205.210.80: Flags [S], cksum 0x263b (correct), seq 3949330011, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0 |
| Sep 9 15:26:46 | pf: 00:00:03.010545 rule 1/0(match): block in on em1: (tos 0x0, ttl 128, id 2486, offset 0, flags [DF], proto TCP (6), length 52) |
vcenter log insight shows:
2013-09-09
15:26:46.621
priority facility source hostname appname
But splunk shows a much nicer
9/9/13
3:26:44.000 PM Sep 9 15:26:44 193.186.36.81 Sep 9 15:26:46 pf: 00:00:03.010545 rule 1/0(match): block in on em1: (tos 0x0, ttl 128, id 2486, offset 0, flags [DF], proto TCP (6), length 52)Sep 9 15:26:44 193.186.36.81 Sep 9 15:26:46 pf: 192.168.99.8.64592 > 80.239.205.210.80: Flags [S], cksum 0x263b (correct), seq 3949330011, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0host=193.186.36.81 Options|
sourcetype=pfsense-firewall Options|
source=udp:514 Options|
dest_ip=80.239.205.210 Options|
dest_port=80 Options
Now the problem is that if i search for example on 80.239.205.210 it will only show:
2013-09-09
15:26:46.621
priority facility source hostname appname
is there a way to change that..???
Thanks!
Regards
Hans
Hello,
When i look on my dashboard and look at toal events by hostname is see alot more "devices" then i am monitoring. Thats cause my devices sometimes show up twice.
Once with their IP and once with their Hostname.
How will this work with licensing? Is it based on ip's?
Hello,
I would like to request AD authentication and also the possibilty to give access to certain sources only.
Regards
Hans
Hello,
I have 2 os's that im monitoring. Both are resovable
But within vcenter log insight only one shows up as a source with the DNS name and the other one with its IP address.
What am i doing wrong?
Regards
Hans
Fans of Log Insight,
We are excited to announce the availability of the Log Insight 1.5 Technical Preview 2 to our private beta members and the expansion of the technical preview program (learn more below).
Log Insight 1.5 Technical Preview 2 demonstrates VMware continued commitment to rapidly iterate and deliver consistent innovation in Big Data Analytics and operations management.
To join, all you have to do is complete this short questionnaire.
This release is driven by customer and partner feedback, delivering best of breed, intuitive Log Analytics and high performance operations management for all aspects of the software defined data center.
We will continue to offer new technical preview builds to the private beta members every 4-8 weeks, so your involvement is key in influencing the future of Log Insight.
Some of the features previewed in this release:
Action Required:
We look forward to your feedback,
The Log Insight Product Team
Message was edited by: billrothjr
I am trying to generate a cert for Log Insight by using the method that is described in this blog post (at the bottom) using an automated batch file
http://www.derekseaman.com/2012/09/vmware-vcenter-51-installation-part-2.html
The resulting chain.pem file includes my cert and CA cert chain. When I attempt to add it to Log Insight, it says the cert is invalid. Can you guys provide any suggestions on how to modify this bit of batch code to work with Log Insight? The meat of the batch is listed below (I just left out all the variables that are set beforehand)
CD /d %Cert_Path%\loginsight
%OpenSSL_BIN% genrsa 2048 > rui.key
%OpenSSL_BIN% req -out rui.csr -key rui.key -new -config loginsight.cfg
certreq -submit -f -q -config "%CA_NAME%" -attrib "CertificateTemplate:%Cert_Template%" rui.csr rui.crt
%OpenSSL_BIN% pkcs12 -export -in rui.crt -inkey rui.key -certfile %CA_Cert_Chain% -name rui -out rui.pem
copy /B rui.crt + %CA_Cert_Chain% chain.pem
Hello,
i wrote in my Blogg a article (with Screenshots) to integrate a QNAP NAS for Example in vCenter Log Insight 1.5 TP2.
I think if other Community Members take other Sources to Log Insight we have in short time a good Base for Integrations.
Excuse but the Blogg is in german, but i think with the Screenshots it is a little Help
Enjoy
Daniel
A Few questions about converting log storage to log insight
-Is it possible to Install Log Insight and begin sending ESXi host logs to log insight, but also keep the copy on the local host at the same time? In other words write every log entry both to the local host and to Log Insight?
-What are the caviats of making the changeover? I want to make sure the transition is smooth so that no logs are lost if there is a hitch in the setup. Are there risks here?
-If you write logs for ESXi hosts only to the log insight server What happens when the Log insight server goes down? Are logs by default rerouted to the local host so that you don't lose log info in an outage that affects the log insight server?
Guys,
I have installed log insight and its taking data from my virtual centres and vcops install. I installed the netapp content pack but it doesnt seem to be bringing in data for my netapp controllers. Is there a step im missing or additional configuration ?
Thanks
Ryan
The VMware vCenter Log Insight 1.5 public beta is now available. For more information, see the VMware Cloud Management Blog.
What are the implications of using Log insight with vCenter Heartbeat? If vCenter fails over to a standby heartbeat server, will log insight continue to function without interruption or loss of available logs as the failover takes place?
Are there any special configurations particular to using Log Insight with Heartbeat?