×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
nmsvuuk
Engager
Member since: ‎03-20-2023
‎03-31-2023
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎03-20-2023
View All

Re: Sending logs from kubernetes to on prem Splunk...

by in Splunk Enterprise
‎03-31-2023 12:05 AM
1 Karma
‎03-31-2023 12:05 AM
1 Karma
Hi I was first thinking there must be a solution to be deployed directly to the Kubernetes as deployment/pods but if installing standard Splunk forwarder on OS level and shipping logs to Splunk enterprise  is a good solution for Kubernetes logs, I  may just try that out .  I will have a look at the HTTPS collector to see how well it addresses the application side logging.   Thanks for your help!   ... View more

Sending logs from kubernetes to on prem Splunk Ent...

by in Splunk Enterprise
‎03-21-2023 02:01 AM
‎03-21-2023 02:01 AM
Hi Trying to figure out how best to send the logs (at least kubernetes logs+ possibly application logs) from on prem Kubernetes cluster to on prem Splunk Enterprise. I have gone through a long list of options such as 'Splunk app for infrastructure' (EOL),  Splunk connect for kubernetes ( EOL Jan 2024) ,  Splunk Operators v1 and 2  etc Splunk OpenTelemetry Collector for Kubernetes would look promising but if I understood correctly this only works with observatility (cloud) and not meant to work/ supported  with with Splunk Enterprise.   My question is what is the best way to ship logs from Splunk to Splunk enterprise (both on prem) ? Currently the Logging , Metrics , Traces etc have not yet been configured on Kubernetes clluster I am building. Since we use Splunk for certalized log collection, what ever solution it is needs to work with Splunk enterprise but also ideally be more futureproof than many of solutions seen previously.         ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎03-31-2023 01:38 AM
Karma from
View All