can we configure syslog collector in windows similarly to rsyslog in unix
we want to store the data in windows and data is coming on udp 514
Hi @parteek_accenture
Yes you can get splunk to listen for UDP connections on port 514 if you want (go into Settings >
Data Inputs >
UDP).
However It is highly recommended that you use a third part syslog receiver. I have used syslog-ng https://www.syslog-ng.com/products/ successfully on windows before but there are other free third-party ones too.
All the best.
Hi Chris .. Thanks for quick reply ..
i want to store the data first like in unix using rsyslog ..
can you please suggest which syslog collector i can use in windows machine ? do you have any reference url or docs .. please share ..
i saw one tool kiwi syslog from solarwinds but it is paid ..
please suggest some free third party ones
On windows I would give this a try: https://www.fluentd.org/architecture