All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk Connect for Kafka how to

jbanAtSplunk
Communicator
‎05-10-2021 05:37 AM

Hi,

I dont have any exp with Kafka but we need to send data from Kafka to Splunk.

I am reading documentation but dont understand what we need to do.

Ok, HEC on Splunk and configure HEC options. But what with .jar (or how to build Docker). Do we need to "build .jar" and than put it into Kafka plugin folder or is there some way that we build connector that will connect to Kafka (like for example Redis or RabbitMQ, like middleware).

Tnx. any help is appreciated.

Labels (2)
Labels
0 Karma
Reply

ilya_resh
Engager
‎06-24-2021 10:38 PM

@jbanAtSplunk , There is a good quick explanation by @daniel_splunk here https://community.splunk.com/t5/All-Apps-and-Add-ons/Any-quick-startup-guide-to-do-end-to-end-testin...

I've also started "putting on paper" my journey with Splunk Connect for Kafka here: http://isbyr.com/splunk-connect-for-kafka/ still work in progress, but might help a bit (though nothing about docker, as I was using "plain" VMs)

0 Karma
Reply

jbanAtSplunk
Communicator
‎06-25-2021 01:42 AM

Tnx. for replay (will have an eye on provided links 🙂 ).

I solved this with logstash as it have Kafka Input plugin so it's straight forward with kafka input and then output  json (to file) and read file with Splunk Universal forwarder.

0 Karma
Reply
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...