Hi,
We are building the architecture of Splunk with Google Cloud. As per the information, I have received so far, Splunk Add on for Google can only integrate Splunk Heavy Forward to the PUB/SUB and Google Stackdriver logs are the only source for PUB/SUB.
So flow is
Stackdriver log ---->PUB/SUB----->Splunk HF
Initially, we thought that we would use GCP bucket for the logs and then we will move the logs directly to Splunk Heavy Forwarder
But it's not possible right now in Splunk
Please correct me if we are going in the wrong direction or anything we are missing.
Thanks,
... View more