I recently setup KinesisFirehose to push to Splunk HEC which is ingesting fine, however, I would like to have the logs sent to "nonprod" or "prod" index depending onthe cloudwatch log group name....
...Input in the AWS Technical Add-on. Overtime this has become incredibly resource hungry and Splunk have suggested we move to the new KinesisFirehose integration.
Unfortunately we have yet been a...
Hi,
we're trying to get cloudwatchlogs via KinesisFirehose to a heavy forwarder in a VPC. It's not working currently, we're getting the error:
"Destination: https://XX.XX.XX.XX:8088 - Failed t...
After reading various blog posts such as this one and the AWS kinesisfirehose application documentation we eventually determined how to get data into Splunk from AWS kinesisfirehose.
Our n...
We're looking at using theKinesisFirehose integration to get our VPC flow logs into Splunk in an environment with Heavy Forwarders.
I don't see this in the documentation, but I was wondering i...
Has anyone successfully achieved KinesisFirehose to a HEC secured with letsencrypt certs?
I've used letsencrypt to generate SSL certs for my Splunk server. I've used those in web.conf to secure Splunk...
Hi Folks,
I am planing to ingest VPC logs into splunk through AWS add-on and also i got the other add-on ( AmazonKinesisFirehose) which it is offering same as AWS add-on.
Could you please l...
...equests arrive to Splunk and see their error message? (and not just metrics...)
I'm using version Splunk Enterprise 6.5.1 with AWS KinesisFirehoseAdd-onforSplunk
Thanks.