Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Simplest method of writing syslog messages

ansif
Motivator
‎11-13-2019 11:43 PM

Simplest method of writing syslog messages?

What technology I have to use to receive syslog messages in UF server and write it into a file?

Free version which has almost all features required for Splunk like filtering ect.

0 Karma
Reply

FrankVl
Ultra Champion
‎11-13-2019 11:57 PM

Usually rsyslog or syslog-ng are used for that. I guess most linux distributions ship with one of those 2 installed by default as the OS' syslog engine. You can simply add config to spin up one or more extra instances for your syslog data feeds.

0 Karma
Reply

ansif
Motivator
‎11-14-2019 12:05 AM

Can we setup HA for rsyslog?

0 Karma
Reply

FrankVl
Ultra Champion
‎11-14-2019 12:10 AM

Yes, you can set up multiple servers running rsyslog/syslog-ng and put a network load balancer in front of them. Or use tools like keepalived.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Enterprise Security 8.0.2 Availability: On cloud and On-premise!

A few months ago, we released Splunk Enterprise Security 8.0 for our cloud customers. Today, we are excited to ...

Logs to Metrics

Logs and Metrics Logs are generally unstructured text or structured events emitted by applications and written ...

Developer Spotlight with Paul Stout

Welcome to our very first developer spotlight release series where we'll feature some awesome Splunk ...