Awesome! Thank you!

Thank you so much for your kind words and I love getting suggestions for new content. Looking at existing content, I would recommend this play list for some content on creating dashboards kzbin.info/aero/PLFF93FRoUwXEuaoqQR2Ghe57vmO8IG4yh but based off your request, my next few videos will focus on giving more info on building dashboards. Stay tuned.

Happy to hear that!

Thank you for your support to this channel and your kind words

The simple answer is, yes. Splunk can ingest any type of time based logs. Syslog, json, text, csv, tsv, key value, etc. There are some exceptions, but that is primarily related to binary data. if it is human readable, splunk will ingest it like a champ. Splunk is considered an unstructured because it takes the logs in their "raw" format and then you can choose to parse them to any format you like after ingestion. Elastic is a structured system because it requires you to identify the structure and format for the logs before ingesting and if the format changes after ingestion, you must re-ingest everything. Hope that helps.

Not really sure what you are asking. Are you looking to set up a specific workflow action to drill down on logs or do you need help collecting logs for monitoring a particular process in Splunk. Feel free to reach out to me on my discord and we can chat.

Can I install this on a cloud version of Splunk?

Only a limited number of apps are available for use on cloud and anything from git will not be approved