Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

sending in data over TCP

shangshin
Builder
‎06-21-2012 08:20 AM

Hi, I have web log file available on remote linux and would like to send it to splunk server over TCP. I have aded a new TCP port, 33333, on the splunk server but can't find the document to continue. Can someone show me the right direction or document?

Tags (2)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

miwalker
Explorer
‎06-21-2012 09:00 AM

I am doing something similar at my company. There isn't a whole lot of setup necessary, really. Here's a bit of my inputs.conf

[tcp://33333]  
disabled = false  
connection_host = dns  
index = foo  
sourcetype = bar

You can find more config in the docs for inputs.conf

Other than that, it pretty much works. Hope this helps.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

miwalker
Explorer
‎06-21-2012 09:00 AM

I am doing something similar at my company. There isn't a whole lot of setup necessary, really. Here's a bit of my inputs.conf

[tcp://33333]  
disabled = false  
connection_host = dns  
index = foo  
sourcetype = bar

You can find more config in the docs for inputs.conf

Other than that, it pretty much works. Hope this helps.

0 Karma
Reply
Solved! Jump to solution

shangshin
Builder
‎06-21-2012 10:35 AM

I see. thank you.

0 Karma
Reply
Solved! Jump to solution

miwalker
Explorer
‎06-21-2012 09:50 AM

So we have written an in house app that takes care of getting the log data out over TCP. You might be able to get creative with netcat or similar tools.

0 Karma
Reply
Solved! Jump to solution

shangshin
Builder
‎06-21-2012 09:32 AM

Thanks for the answer. I can add these configuration in the splunk server but I am still puzzled on how to "push" web access log from remote server to splunk over tcp?

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Quantify Your Splunk Investment Impact: Introducing Savings Metrics to Value Insights

Building on the foundation established in our initial Value Insights releases, we are introducing the Savings ...

Event Series: Telemetry Pipeline Management

Balancing Scale and Spend: Gaining Control Over High-Volume Metrics in Splunk Observability Cloud As ...

Kick the Tires Before You Commit: A Hands-On Tour of the Splunk Observability Cloud ...

Evaluating an enterprise observability platform usually goes like this: fill out a form, get a free trial with ...