Deployment Architecture

I want to forward a flat file to a third party syslog destination using splunk

pbowen1964
New Member

I have several home grown applications that generate flat files.
I can install the splunk forwarder on the server but need it to forward as syslog line by line
like a typical syslog forwarder to splunk and a third party solution

Tags (1)
0 Karma

Lucas_K
Motivator

You can do something slightly different and send it direct with a uf to splunk and then use Splunk Realtime output to send it on to the 3rd party syslog device/party. By using the output you can filter when you send to that 3rd party also.

The Splunk Realtime output app is here -> http://apps.splunk.com/app/1009/

0 Karma

Lucas_K
Motivator

'Will this realtime app read the whole flat file and send it line by line to my syslog destination?' No, it forwards events already contained with in a splunk index, in realtime, to a syslog destination.

You can also do it this way also : http://docs.splunk.com/Documentation/Splunk/6.0/Forwarding/Forwarddatatothird-partysystemsd

0 Karma

pbowen1964
New Member

Not sure I am following as I am very new to splunk
Will this realtime app read the whole flat file and send it line by line to my syslog destination?
I will have thousands of flat files daily and need to send them line by line to the third party as well as to splunk.

0 Karma
Get Updates on the Splunk Community!

SOC4Kafka - New Kafka Connector Powered by OpenTelemetry

The new SOC4Kafka connector, built on OpenTelemetry, enables the collection of Kafka messages and forwards ...

Your Voice Matters! Help Us Shape the New Splunk Lantern Experience

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Building Momentum: Splunk Developer Program at .conf25

At Splunk, developers are at the heart of innovation. That’s why this year at .conf25, we officially launched ...