https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293873#M5445 <P>Hi</P> <P>What is the best way to get data into Splunk from Elasticsearch, so i can put Datamodles on to it.</P> <P>Thanks<BR />Robert Lynch</P> Mon, 08 Jun 2020 23:33:01 GMT robertlynch2020 2020-06-08T23:33:01Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293873#M5445 <P>Hi</P> <P>What is the best way to get data into Splunk from Elasticsearch, so i can put Datamodles on to it.</P> <P>Thanks<BR />Robert Lynch</P> Mon, 08 Jun 2020 23:33:01 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293873#M5445 robertlynch2020 2020-06-08T23:33:01Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293874#M5446 <P>Hi robertlynch2020, </P> <P>this links might help you:<BR /> <A href="https://www.hurricanelabs.com/splunk-tutorials/splunk-tutorial-using-splunk-to-pull-results-from-elasticsearch">https://www.hurricanelabs.com/splunk-tutorials/splunk-tutorial-using-splunk-to-pull-results-from-elasticsearch</A><BR /> <A href="https://devpost.com/software/splunk-elasticsearch">https://devpost.com/software/splunk-elasticsearch</A></P> Thu, 11 Jan 2018 10:13:27 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293874#M5446 p_gurav 2018-01-11T10:13:27Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293875#M5447 <P>hello,</P> <P>From what I have made :<BR /> I query elasticsearch via python scripts, then I route the results to the Python script.<BR /> And I deposit the script.py on the bin of my application. And there you can call it easily.</P> <P>Kind regards<BR /> Imane El Mostaad,</P> Thu, 10 May 2018 13:46:41 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293875#M5447 consultanteIman 2018-05-10T13:46:41Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293876#M5448 <P>I have used this and it works really well so far in Splunk 7.1:<BR /> <A href="https://github.com/brunotm/elasticsplunk">https://github.com/brunotm/elasticsplunk</A></P> <P>it adds a new command <CODE>ess</CODE> that allows you to specify one or more nodes to search against. It provides results back using the statistics model (sorta like using db connect to query a db directly).</P> Tue, 10 Jul 2018 14:40:40 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293876#M5448 hcannon 2018-07-10T14:40:40Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293877#M5449 <P>This might be helpful for anyone visiting; I have started working on an addon for Elasticsearch instances, feel free to use it!<BR /> <A href="https://splunkbase.splunk.com/app/4175/">https://splunkbase.splunk.com/app/4175/</A></P> Tue, 25 Sep 2018 18:47:38 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293877#M5449 larmesto 2018-09-25T18:47:38Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293878#M5450 <P>Hi @robertlynch2020,</P> <P>Check my answer here : <BR /> <A href="https://answers.splunk.com/answers/751469/elastic-to-splunk-migration-how-to.html?childToView=752706#answer-752706">https://answers.splunk.com/answers/751469/elastic-to-splunk-migration-how-to.html?childToView=752706#answer-752706</A></P> <P>Cheers,<BR /> David</P> Sun, 16 Jun 2019 13:18:43 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293878#M5450 DavidHourani 2019-06-16T13:18:43Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293879#M5451 <P>Hi larmesto!</P> <P>Is this solution a reliable instument for data input?<BR /> Like splunk dbconnect, for example.</P> <P>Thanks in advance.<BR /> Rashid</P> Mon, 16 Mar 2020 10:08:27 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293879#M5451 highsplunker 2020-03-16T10:08:27Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293880#M5452 <P>hi Imane El Mostaad,<BR /> it this method OK and reliable?</P> <P>thanks in advance,<BR /> Rashid</P> Mon, 16 Mar 2020 10:11:56 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293880#M5452 highsplunker 2020-03-16T10:11:56Z https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293881#M5453 <P>Hi p_gurav!<BR /> Could you please share your experience, are these 2 solutions reliable as an instument for data input?<BR /> Like splunk dbconnect, for example.</P> <P>Thanks in advance.<BR /> Rashid</P> Mon, 16 Mar 2020 13:42:11 GMT https://community.splunk.com/t5/Reporting/Get-Data-into-Splunk-from-Elasticsearch/m-p/293881#M5453 highsplunker 2020-03-16T13:42:11Z