I am currently sending data to my Splunk Server via UDP. I am looking to migrate to Splunk Cloud, so I got the Splunk Cloud Free Trial. I noticed that in Splunk Cloud there is currently no way to create a UDP listener to accept my data. What is the work around this?
Splunk Cloud supports neither UDP nor TCP inputs. You'll have to stand up an on-prem heavy forwarder to receive the UDP inputs and forward them to Splunk Cloud.
--- If this reply helps you, Karma would be appreciated.
the preferred method is set up syslog server (rsyslog or syslog-ng) or use SC4C to get logs from syslog sources and then send those logs from it by UF or in SC4C case it sends those via HEC to your cloud instance.
