The topic of reference architectures keeps coming up with Log Insight so I thought I would cover it over a series of blog posts. In…
Log Insight: Retention System Notifications
Log Insight notifies users when it is unable to maintain the defined retention period by sending a system notification. In this post, I would like…
Log Insight: User Alert Architecture
I have talked about Log Insight user alerts in the past, but I think it is important to re-enforce the user alert architecture as it…
Log Insight 3.0: Matches Operator
I covered query building in Log Insight a long time ago. While the UI has changed significantly since I wrote those posts, the information contained…
Log Insight 3.0: Cluster Page
In Log Insight 3.0 some changes have been made to the Cluster page under the Administration section. In this post I would look to cover…
The Importance of /etc/hosts on the Log Insight Virtual Appliance
A while ago, I talked about what unsupported means. In this post, I will talk about how performing an unsupported change can negatively impact your…
How to Blacklist Events in Log Insight
A commonly requested feature in Log Insight is the ability to blacklist incoming events. In this post, I will suggest a workaround to get this…
Log Insight: Fixing Disconnected Nodes
I recently heard of an issue where multiple nodes from a Log Insight cluster had become disconnected. The steps performed in an attempt to resolve…
5 Reasons Why A Log Insight Content Pack Widget Returns No Results
I have been asked a few times why a content pack does not return any results. The actual symptoms of the problem often vary between:…
Log Insight Agents: Client-side versus Server-side Configuration
I have received some questions around agent configuration that I wanted to clear up. Read on to learn more!