We plan to use stream forwarders to use the stream app. As per the documentation, linux OS is recommended to be used for installing the stream forwarders but can I use a windows OS as well? Can we install stream forwarder on a windows box? or is there some restriction to that?
Yes, you can use Windows Server 2012R2 or later for Stream Forwarders. Note the caveats listed here.
thanks for your reply. But according to teh below document, they have listed ilinux under the prerequisites. Can we still go ahead and use windows?
That page refers to a Independent Stream forwarder, which is a standalone server for Splunk stream. In cases where you need to capture a very large amount of traffic, this might be suitable.
Otherwise, you can follow the process listed at https://docs.splunk.com/Documentation/StreamApp/7.1.2/DeployStreamApp/InstallSplunkAppforStream to install it on Windows or Linux,.