- Complex Search
Complex search queries are run on search results for advanced computation, aggregation, statistics and complex rules analysis. Search through all your logs, applications, folders, servers, network devices, database tables, or anything else, in XpoLog Center. In one lone click, get all results instantaneously. The results can then be visualized or monitored.
XpoLog Complex Search automatically filters the result events according to their source (logs, files, applications, or servers) and performs advanced complex operations and reporting on these log events according to the criteria of your choice. Complex search queries are run on search results for advanced computation and reporting on matching log events. This boosts your troubleshooting by helping you find the source of your problems immediately, and as an “extra bonus”, XpoLog automatically gives you a full list of all low, medium, and high severity errors next to your search results. You can read more about this in the Analytics Features.
- Statistical Functions
When running a Complex Search, XpoLog performs one or more complex operations on simple search results, according to your criteria. Some of these complex operations are statistical functions, for example, percent.
XpoLog Complex Search provides the option to aggregate log data and to generate advanced statistics, trends, business intelligence, and transaction analysis on your log data. The complex search functions are operations that are applied on the results of your searches. Among the available functions you can find: count, min, max, avg, sum, time, start time, end time, country, country code, city, region, execute, and the list continues… These functions highlight specific data that can help expose more hidden issues.
- Log Data Aggregation
XpoLog manipulates your data through advanced complex searches and functions.
XpoLog knows how to approach your data from any angle. XpoLog knows how to parse your search results in different ways to derive statistics from any dimension of your data. Log data aggregation is the manipulation of data through complex searches, and functions. Once you know how you want XpoLog to filter your data, what time interval you want it to search, and what functions and group by field you want XpoLog to use, you can receive the results data table you need to investigate your application/program. You are making your own rules, how to delve into your data in any way you want, how to sort it, filter it, analyze it, and manipulate it. XpoLog Complex Search generates a summary table which shows the number of events per field in the query, such as, the aggregation values time, max, min, or other statistical values per the function executed in the complex search. You can click on each aggregated event in order to drill down to the relevant log records. You can learn more about this is the Analytics section. XpoLog gives you the tools, but you make the rules.
- Data Computation
XpoLog Search contains advanced computation and statistics functions that can be activated for any search result. XpoLog Complex Search computation and statistics functions can map events correlations from multiple sources and these transactions can be analyzed very efficiently to identify slow transactions, generate statistics, alerts, and more.
XpoLog Complex Search computation and statistics functions can map events correlations from multiple sources. The transactions can be analyzed very efficiently to measure transactions over time, identify slow transactions, generate statistics, alerts and more. XpoLog Search contains advanced computation and statistics functions that can be activated for any search result. Complex search queries can be run on search results for advanced computation and reporting on matching log events.They can for example count events, calculated averages, see specific distribution by a specific time period, and more.
- Advanced Rules
You always have the option of creating your own rules, counting sequences of events, comparing trends, detecting flow of events and more.
XpoLog allows you to create your own rules already from the time you are defining your search/search monitor. You can also choose to use the XpoLog Search Monitor’s default settings which are scheduled to execute search queries at scheduled intervals. If you want you can define the XpoLog search monitor directly from the search console. You can decide if you want the search monitor to only scan the latest data to enter the log records or the whole log including new and old data. By default, if one single record matches the configured rule, the monitor will consider it a failure and the alerts will immediately be triggered. But also here, XpoLog gives you the option to decide what will determine the fail criteria of the monitor.
- Custom Data Functions
When conducting a search you can create your own custom functions.
XpoLog’s Search syntax has been enhanced with the implementation of more mathematical, statistical, and other complex functions. For example, when defining your search, you can decide if XpoLog should distinguish between business and non-business hours, and/or specify the desired hours. If you know your application had an issue during a specific time, defining your search to only search during this time can save a lot of time. You can also import a JAR of custom functions that have already been defined by XpoLog. In our most recent version of XpoLog, XpoLog’s Search syntax was enhanced with many new mathematical, statistical, and complex functions.