Solved: Re: Cisco eStreamer for Splunk not logging

kalya · ‎06-01-2017

Hi.
I have new install Splunk 6.6.1 and Cisco eStreamer for Splunk 2.2.2 on Windows Server 2012 R2. I configured eStreamer, but no success result. I add option "Verbose, debug-style logging" in eStreamer setup, restart server and try find logs, why eStreamer not working.
I'm not found log file estreamer_debug.log in c:\Program Files\Splunk\etc\apps\eStreamer\bin\ directory and in any other directory on the server. Also folder c:\Program Files\Splunk\etc\apps\eStreamer\log\ is empty.

estreamer.conf
[estreamer]
changed = 1
client_disabled = 0
debug = 1
log_extra_data = 1
log_flows = 1
log_metadata = 1
log_packets = 1
pkcs12_file = $APP_PATH/bin/opaopa.pkcs12
pkcs12_password = opapa
server = 192.168.0.10

Thanks!

kalya · ‎06-07-2017

I found information that Cisco eStreamer not work on Windows platform.
https://splunkbase.splunk.com/app/1629/

View solution in original post

kalya · ‎06-07-2017

I found information that Cisco eStreamer not work on Windows platform.
https://splunkbase.splunk.com/app/1629/

kalya · ‎06-05-2017

I try new install on Linux system and no any problem. But on Windows it's App not work. "No results found" in status of the Apps...

Cisco eStreamer for Splunk not logging

The OpenTelemetry Certified Associate (OTCA) Exam

From Manual to Agentic: Level Up Your SOC at Cisco Live

Splunk Classroom Chronicles: Training Tales and Testimonials (Episode 4)

Join the Conversation

Cisco eStreamer for Splunk not logging

The OpenTelemetry Certified Associate (OTCA) Exam

From Manual to Agentic: Level Up Your SOC at Cisco Live

Splunk Classroom Chronicles: Training Tales and Testimonials (Episode 4)