Hey All,
We have a file which has the version number of an application in the below format :
version = 4.0
The requirement is to get notified when the version field gets updated. In order to do so, the file has to be re-indexed very often. Also note that file size is very small. We are looking for a solution where we can get notified when the version field gets changed. We do not want to restart the Splunk server as we can re-index a file after deleting the fish bucket.
Kindly suggest any solution which matches above constraints
↧