All Apps and Add-ons

Can we create a real-time web dashboard using Hunk or other app for a MongoDB source?

AnilKrishna
New Member

HI There,

I have a very specific requirement. I would like to know if we can use hunk to create a real time web dashboard which can be viewed by many people in the company on their desktop, devices, tabs etc? If hunk doesn't support this are there any other App in splunk which does this?

The data source is a MongoDB collection on a remote server running on Windows server 2012 which consists of Logs from an application.

Appreciate your help. Thanks.

Anil Krishna

0 Karma

jbrodsky_splunk
Splunk Employee
Splunk Employee

Anil, it depends on what you mean by real-time. Hunk, with the hadoop provider or with the mongodb provider does not provide a real-time capability like Splunk Enterprise does. To be clear - you can run a Splunk Enterprise search in true "real time" and as soon as the incoming data hits a Splunk indexer, it is available for display on a dashboard or a tablet or whatever. With Hunk, we're executing map-reduce jobs in a hybrid model (against HDFS or nosql stores).

As I see it you have the following options.

  1. Use Hunk against MongoDB and simply run very frequent searches. We have seen customers run MongoDB searches once a minute like this, and the dashboard would update every minute. Perhaps that is close enough to real time for you.
  2. Use DB Connect, by installing a JDBC driver as shown here: http://www.unityjdbc.com/mongojdbc/setup/mongodb_jdbc_splunk.pdf. You can then use the dbquery command or you can index your MongoDB data in Splunk using a dbmon-tail and then truly use Splunk Enterprise's real-time capability.

If you truly have logs on a Windows server, there's no need to involve MongoDB at all here, by the way. You can simply use a Universal Forwarder to stream these logs in real-time to Splunk Enterprise, and get real-time visualization that way. You can even use the Splunk Mobile Access Server to serve up content to iPads.

cmontonen
Explorer

The JDBC driver link in the message above is broken.
The correct (I think) link is this http://www.unityjdbc.com/mongojdbc/setup/mongodb_jdbc_splunk.pdf

Splunk_Bw
Explorer

Hello folks,

when i tried above approach im getting below error, but i have verified from server side it is installed. Any one had this issue?

Encountered the following error while trying to save: In handler 'databases': JDBC driver (mongodb.jdbc.MongoDriver) for database type MongoDB is not installed

0 Karma
Get Updates on the Splunk Community!

What's new in Splunk Cloud Platform 9.1.2312?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.1.2312! Analysts can ...

What’s New in Splunk Security Essentials 3.8.0?

Splunk Security Essentials (SSE) is an app that can amplify the power of your existing Splunk Cloud Platform, ...

Let’s Get You Certified – Vegas-Style at .conf24

Are you ready to level up your Splunk game? Then, let’s get you certified live at .conf24 – our annual user ...