We have released a patch release for the Collectord, that includes a few new features, performance and memory improvements.
Whitelisting the messages
With the replace annotations you could configure which log messages you want to drop and not forward to Splunk. If you want to configure the whitelist pattern, and tell Collectord which messages should be forwarded to Splunk you can configure a whitelist pattern now. For example for NGINX Pod you can specify that only log messages with POST and DELETE words should be forwarded to Splunk
apiVersion: v1 kind: Pod metadata: name: nginx-pod annotations: collectord.io/logs-whitelist: '((DELETE)|(POST))$' spec: containers: - name: nginx image: nginx
You can find more information about other minor updates by following links below.
- Monitoring OpenShift - Release notes
- Monitoring Kubernetes - Release notes
- Monitoring Docker - Release notes