Deployment Architecture

I want to forward a flat file to a third party syslog destination using splunk

pbowen1964
New Member

I have several home grown applications that generate flat files.
I can install the splunk forwarder on the server but need it to forward as syslog line by line
like a typical syslog forwarder to splunk and a third party solution

Tags (1)
0 Karma

Lucas_K
Motivator

You can do something slightly different and send it direct with a uf to splunk and then use Splunk Realtime output to send it on to the 3rd party syslog device/party. By using the output you can filter when you send to that 3rd party also.

The Splunk Realtime output app is here -> http://apps.splunk.com/app/1009/

0 Karma

Lucas_K
Motivator

'Will this realtime app read the whole flat file and send it line by line to my syslog destination?' No, it forwards events already contained with in a splunk index, in realtime, to a syslog destination.

You can also do it this way also : http://docs.splunk.com/Documentation/Splunk/6.0/Forwarding/Forwarddatatothird-partysystemsd

0 Karma

pbowen1964
New Member

Not sure I am following as I am very new to splunk
Will this realtime app read the whole flat file and send it line by line to my syslog destination?
I will have thousands of flat files daily and need to send them line by line to the third party as well as to splunk.

0 Karma
Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...