Re: Splunk Connect for Kafka how to

jbanAtSplunk · ‎05-10-2021

Hi,

I dont have any exp with Kafka but we need to send data from Kafka to Splunk.

I am reading documentation but dont understand what we need to do.

Ok, HEC on Splunk and configure HEC options. But what with .jar (or how to build Docker). Do we need to "build .jar" and than put it into Kafka plugin folder or is there some way that we build connector that will connect to Kafka (like for example Redis or RabbitMQ, like middleware).

Tnx. any help is appreciated.

ilya_resh · ‎06-24-2021

@jbanAtSplunk , There is a good quick explanation by @daniel_splunk here https://community.splunk.com/t5/All-Apps-and-Add-ons/Any-quick-startup-guide-to-do-end-to-end-testin...

I've also started "putting on paper" my journey with Splunk Connect for Kafka here: http://isbyr.com/splunk-connect-for-kafka/ still work in progress, but might help a bit (though nothing about docker, as I was using "plain" VMs)

jbanAtSplunk · ‎06-25-2021

Tnx. for replay (will have an eye on provided links 🙂 ).

I solved this with logstash as it have Kafka Input plugin so it's straight forward with kafka input and then output json (to file) and read file with Splunk Universal forwarder.

Splunk Connect for Kafka how to

configuration

installation

Index This | Why did the turkey cross the road?

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

Feel the Splunk Love: Real Stories from Real Customers

Are you a member of the Splunk Community?