Community:Getting data into Splunk
From Splunk Wiki
- Create syslog-ng rules to send data to Splunk
- Considerations for deciding how to get data from Windows hosts
- Deploying lightweight forwarders
- How to design the right forwarder for your environment
- How to find "lost" forwarders
- Working with UDP connections
- Best practices for getting data into Splunk remotely
- Getting data from the Cisco Security Agent (CSA) into Splunk
- Considerations on using Snare, WMI polling or Splunk light weight forwarders
- Best Practices for configuring Syslog Input
- How to get data from Novell Netware into Splunk
- How to index VMware ESX or ESXi data via syslog
- Adding archived/historic data to Splunk
- Setting a blacklist to Index and Forward
- Indexing Tripwire logs
- Gathering HP-UX Audits
- Get Arcsight ESM data into Splunk
- Monitoring a directory with various sourcetypes
- Field extractions for Squid data
- How to configure Mac OS X syslogd to forward data to splunk (Portuguese)
How to contribute
Want to add information to an existing topic or create a new topic? Click here for instructions.
