I need help sending logs to Splunk from GitLab. Could someone help me get started?
Yes I already used and configured in splunk, but GitLab logs are not seen yet
Have you check internal logs that this input is working? Also check from all indexes from all time with source/sourcetype/host. Time by timestamp parsing or index setting could fail, and those could be on your default index or those could have some weird time even in future.
Essentially, you should probably deploy universal forwarders on your gitlab servers to send the logs to your Splunk indexers.
Do you have any example of which ones to use?