Re: can we configure syslog collector in windows ?

parteek_accentu · ‎02-04-2019

can we configure syslog collector in windows similarly to rsyslog in unix
we want to store the data in windows and data is coming on udp 514

chrisyounger · ‎02-04-2019

Hi @parteek_accenture

Yes you can get splunk to listen for UDP connections on port 514 if you want (go into Settings >Data Inputs >UDP).

However It is highly recommended that you use a third part syslog receiver. I have used syslog-ng https://www.syslog-ng.com/products/ successfully on windows before but there are other free third-party ones too.

All the best.

parteek_accentu · ‎02-04-2019

Hi Chris .. Thanks for quick reply ..
i want to store the data first like in unix using rsyslog ..
can you please suggest which syslog collector i can use in windows machine ? do you have any reference url or docs .. please share ..
i saw one tool kiwi syslog from solarwinds but it is paid ..
please suggest some free third party ones

chrisyounger · ‎02-04-2019

On windows I would give this a try: https://www.fluentd.org/architecture

can we configure syslog collector in windows ?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Automating Threat Operations and Threat Hunting with Recorded Future

Join the Conversation