Splunk Dev
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

How to best send our Java app's logs to Splunk?

janicki
New Member
‎07-21-2016 11:47 AM

Our Java app, developed in-house, has easily-parsed logs. I'd like to get them into Splunk real-time, and in an elegant way. (Nicer than Splunk tailing log files?) I can edit our Java app to do whatever is best for this purpose. What do you suggest?

DISCLAIMER: I am not familiar with Splunk, so I don't know how its pieces fit together!! Forwarder? App? REST? Java API? Java Bridge? What?! (However, I have seen Splunk's nice recommendations for log formatting.)

If someone could please summarize an approach, I'll research the details. I'd really appreciate your advice so I don't have to study the entire Splunk universe to make this development direction choice. Thanks!!!

0 Karma
Reply

janicki
New Member
‎07-22-2016 04:30 PM

FYI, (for others who find this question) I found this nice short video that shows a Java example of pushing events: http://www.splunk.com/view/SP-CAAAHHJ

0 Karma
Reply

ddrillic
Ultra Champion
‎07-21-2016 07:42 PM

The following speaks to that - Logging best practices

It shows the options -

alt text

Preview file
107 KB
0 Karma
Reply

janicki
New Member
‎07-22-2016 04:26 PM

Thanks! Although those seem to be methods for Splunk to PULL logs from an app... I was trying to PUSH. Our app creates lots of events that's aren't kept in memory very long, so PULL could be a problem.

0 Karma
Reply

ddrillic
Ultra Champion
‎07-22-2016 05:16 PM

Got it. In order to push data in you can look at REST API to push data into Splunk

alt text

The latest reference is Input endpoint descriptions

0 Karma
Reply

somesoni2
Revered Legend
‎07-21-2016 01:21 PM

Have a look at the Http Event Collector. It's easy enough to setup and use.

http://dev.splunk.com/view/event-collector/SP-CAAAE6M
http://docs.splunk.com/Documentation/Splunk/6.4.2/Data/UsetheHTTPEventCollector

0 Karma
Reply

janicki
New Member
‎07-22-2016 04:23 PM

Thanks, that's great!

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas     Cisco Live 2026 is almost here, and this ...

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Hello Splunkers,   So you searched, “what is the name of the usb key inserted by bob smith?”  Not gonna lie… ...

Automating Threat Operations and Threat Hunting with Recorded Future

    Automating Threat Operations and Threat Hunting with Recorded Future June 29, 2026 | Register   Is your ...