Re: Is the option to download AWS RDS log files be...

davidhofmann · ‎12-09-2015

It's possible through AWS CLI to download RDS log files. Is this an option that being consider for future releases of Splunk App for AWS?

klops · ‎11-16-2016

Use Lambda function to first put logs into S3 in schedule, then you can do your regular S3 input.

I was able to use python code from this repo to archive this:
https://github.com/ryanholland/rdslogs_to_s3

tjbaker72 · ‎02-26-2016

We download the rds logs via the cli and upload them to an s3 bucket on a schedule. From there we can use the s3 input. I presume aws will add the option to put rds logs in an s3 bucket, just as they do with elb logs.

Cheers,
Trevor

jzhong_splunk · ‎12-09-2015

Hi David, is the RDS log available via S3 bucket? If so, you can use the S3 modular input to index them. Otherwise, we need check with other customers and product management team to prioritize it.

-- Jove Z (development manager of the Splunk App for AWS)

davidhofmann · ‎12-10-2015

Hi Jove,

Right now they don't have a export to S3 option. You have to use the API to download the logs.

How do I go about contacting the product management team?

David

jzhong_splunk · ‎12-10-2015

Hi David, I saw your email in the system. I will let PM to contact you.

Is the option to download AWS RDS log files being considered for future releases of the Splunk App for AWS?

Enterprise Security Content Update (ESCU) | New Releases

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

Index This | What are the 12 Days of Splunk-mas?