The widget "VM Snapshots Created" in the "Virtual Machine - Snapshots" Dashboard in LI 4.0 seems to be broken. Even if taking multiple snapshots and setting the dashboard time span correctly, it stays on 0 and the other widgets on the dashboard remain empty. It seems to stem from the field 'vmw_esxi_snapshot_operation', which doesn't seem to match any of the log events that ESXi or vCenter Server generates when taking... more »
Content Packs are source-centric interpretations that help you make sense of your unstructured machine data.
debug the powershell script
How can I debug "Exchange envirotment" script? I can run it. But it cannot product the output file.
It would be really nice to have Geographic pinning similar to a lot of firewall tools & SIEM system where each outgoing IP address are pinned to a global map to have overview of where the traffics are going.
Setup instructions for VRA7 content pack specifies the following: In addition to installing and configuring the vRA content pack, the following content packs should also be installed and configured: • Apache - CLF • vRealize Orchestrator I am trying to figure out how the content pack "Apache - CLF" should be used for VRA7? For filters to select which agents receive the Agent Configuration below, which VRA server... more »
Until today, I cannot get file output for "environment statistics" powershell script.
How can I debug the script?
IIS CP xtracts wrong fields.
See attached Screenshot.
Prior vLI 3.6 I have not noticed this behavior
In order to help troubleshoot vRops issues - I have created a some widgets. Basicly three with some variances.
vRops Webrequest respones time
vRops Webrequest Respones Code
vRops Collector Issues
You can see some screenshot of it added to this discussion.
Also have a blog post coming which hasn't been released yet. Just a description of the value add.
I have looked at the vRops Agent setup instructions and they don't make sense to me... Rather than copy/pasting it all in here, I have attatched a file with the setup instruction. 1. In the beginning of the file, the first two lines after "Configuring the vRealize Log Insight Agent". Goes on about the liagent.ini need to be modified. 1A. This is not true as the centralized configuration is used, correct ? That part... more »
Can we create a management pack for SRM and vSphere Replication?
Extract more Details from Windows Firewall File-Log
(ContentPack is attached)
- Blocked Connections by Source IP
- Blocked Connections by Destination IP
- Blocked Connections by Source Port
- Blocked Connections by Destination Port
- Blocked Connections by Protokoll
- Blocked Connections by Hostname
- Disabled / Enabled Firewall
Since Citrix still has "some marketshare", it would make sense to deliver a CP for it.
It would be awesome if there could be a Content Pack for Linux's auditd. This could be used to identify when someone fails to login as root, or attempts, when a file has been accessed or touched, elevated privileges have been attempted and many more uses.
I put together a quick content pack for NSX Distributed Firewall syslog analysis with Log Insight. It has field extractions for all of the relevant fields and some pre-built queries that give a solid framework to focus in on specific rules, protocols, or hosts. I wrote it to analyze potential rule impact will Allow-Log, but it also helps troubleshoot with visibility to drops as well. Content pack attached to this post.... more »