Getting Data In

can we configure syslog collector in windows ?

parteek_accentu
New Member

can we configure syslog collector in windows similarly to rsyslog in unix
we want to store the data in windows and data is coming on udp 514

Tags (1)
0 Karma

chrisyounger
SplunkTrust
SplunkTrust

Hi @parteek_accenture

Yes you can get splunk to listen for UDP connections on port 514 if you want (go into Settings >Data Inputs >UDP).

However It is highly recommended that you use a third part syslog receiver. I have used syslog-ng https://www.syslog-ng.com/products/ successfully on windows before but there are other free third-party ones too.

All the best.

0 Karma

parteek_accentu
New Member

Hi Chris .. Thanks for quick reply ..
i want to store the data first like in unix using rsyslog ..
can you please suggest which syslog collector i can use in windows machine ? do you have any reference url or docs .. please share ..
i saw one tool kiwi syslog from solarwinds but it is paid ..
please suggest some free third party ones

0 Karma

chrisyounger
SplunkTrust
SplunkTrust

On windows I would give this a try: https://www.fluentd.org/architecture

0 Karma
Take the 2021 Splunk Career Survey

Help us learn about how Splunk has
impacted your career by taking the 2021 Splunk Career Survey.

Earn $50 in Amazon cash!