https://community.splunk.com/t5/Getting-Data-In/Critical-Syslog-Server-Tricks/m-p/556019#M92062 <P>Hi all,</P><P>I have a large environment to deploy Splunk cloud and trying to leverage the syslog server (Rsyslog) in front of a load balancer, with UF on top.</P><P>As per my research, I have found a wonderful document which automates the inputs.conf and props.conf creation based on an excel sheet, relying on separation based on devices hostnames.</P><P>The link for documentation is here:&nbsp;<A href="https://conf.splunk.com/files/2017/slides/the-critical-syslog-tricks-that-no-one-seems-to-know-about.pdf" target="_blank" rel="noopener">https://conf.splunk.com/files/2017/slides/the-critical-syslog-tricks-that-no-one-seems-to-know-about.pdf</A></P><P>I'm wondering if anyone has used the provided scripts for this automation? I couldn't find any explanation on how the python scripts work?<BR /><BR />link to gitlab:&nbsp;<A href="https://gitlab.com/rationalcyber/splunk_syslog_inputs" target="_blank" rel="noopener">https://gitlab.com/rationalcyber/splunk_syslog_inputs</A></P><P>link to script:&nbsp;<A href="https://gitlab.com/rationalcyber/splunk_syslog_inputs/-/tree/master/src" target="_blank" rel="noopener">https://gitlab.com/rationalcyber/splunk_syslog_inputs/-/tree/master/src</A></P><P>Thanks in advance!</P> Wed, 16 Jun 2021 16:42:40 GMT aydinmo 2021-06-16T16:42:40Z https://community.splunk.com/t5/Getting-Data-In/Critical-Syslog-Server-Tricks/m-p/556019#M92062 <P>Hi all,</P><P>I have a large environment to deploy Splunk cloud and trying to leverage the syslog server (Rsyslog) in front of a load balancer, with UF on top.</P><P>As per my research, I have found a wonderful document which automates the inputs.conf and props.conf creation based on an excel sheet, relying on separation based on devices hostnames.</P><P>The link for documentation is here:&nbsp;<A href="https://conf.splunk.com/files/2017/slides/the-critical-syslog-tricks-that-no-one-seems-to-know-about.pdf" target="_blank" rel="noopener">https://conf.splunk.com/files/2017/slides/the-critical-syslog-tricks-that-no-one-seems-to-know-about.pdf</A></P><P>I'm wondering if anyone has used the provided scripts for this automation? I couldn't find any explanation on how the python scripts work?<BR /><BR />link to gitlab:&nbsp;<A href="https://gitlab.com/rationalcyber/splunk_syslog_inputs" target="_blank" rel="noopener">https://gitlab.com/rationalcyber/splunk_syslog_inputs</A></P><P>link to script:&nbsp;<A href="https://gitlab.com/rationalcyber/splunk_syslog_inputs/-/tree/master/src" target="_blank" rel="noopener">https://gitlab.com/rationalcyber/splunk_syslog_inputs/-/tree/master/src</A></P><P>Thanks in advance!</P> Wed, 16 Jun 2021 16:42:40 GMT https://community.splunk.com/t5/Getting-Data-In/Critical-Syslog-Server-Tricks/m-p/556019#M92062 aydinmo 2021-06-16T16:42:40Z https://community.splunk.com/t5/Getting-Data-In/Critical-Syslog-Server-Tricks/m-p/640386#M109302 <P><a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/212476">@aydinmo</a>&nbsp;did you get this resolved?&nbsp; I'm one of the presenters of that 2017 .conf talk; please let me know if there were any hurdles you couldn't get past.</P> Tue, 18 Apr 2023 17:07:04 GMT https://community.splunk.com/t5/Getting-Data-In/Critical-Syslog-Server-Tricks/m-p/640386#M109302 evilgeorge 2023-04-18T17:07:04Z