Hey Gang, I have a user that wants us to ingest Cisco CallManager AlternateSyslogs into Splunk. These apparently come out of a system known as Real Time Monitoring Tool (RTMT). I was curious if anyone was aware of an existing add-on that might be able to deal with this file format, or if anyone had already worked up the regex for it. Any thoughts? Thanks in advance!
Just FYI, we are running Splunk Enterprise 6.2.3 on a Linux based installation.
↧