Is there a Splunk Universal Forwarder version for ...

mmensch · ‎05-02-2016

Hi,

I have a few HP UX version 11.00 servers that I need logs sent to Splunk. I have successfully installed the forwarder on HP UX 11.23, but I do not see a version for 11.00.

Can someone confirm? How else could I get logs into Splunk from this if this is the case?

Thanks for any help.

somesoni2 · ‎05-09-2016

The older version of Splunk Universal forwarder might be supported. Check here (change the Version from top right corner dropdown)

http://docs.splunk.com/Documentation/Splunk/6.2.0/Installation/Systemrequirements

jplumsdaine22 · ‎05-03-2016

Doesn't look like its officially supported, only 11.23 and 11.31 See: http://docs.splunk.com/Documentation/Splunk/6.4.0/Installation/Systemrequirements , http://docs.splunk.com/Documentation/Splunk/6.4.0/Installation/InstallonHP-UX and http://www.splunk.com/page/previous_releases#parischpux

Your best bet is probably to use syslog to forward the logs to a host that can run the forwarder.

mmensch · ‎05-09-2016

What do you exactly mean "use syslog"?

jplumsdaine22 · ‎05-10-2016

You can configure syslogd to send logs to a remote host, and then use a universal forwarder on the remote host to send the logs to your indexer.

There are a variety of guides out there - I'm not familiar with HPUX so you should probably get in touch with your sysadmins to set this up.

Is there a Splunk Universal Forwarder version for HP-UX 11.00?

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms