Splunk Dev
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Unable to connect to Splunk Cloud using MuleSoft

AmalaHariram
New Member
‎04-08-2016 08:47 AM

Hi,

I am trying out a scenario where I need to connect to Splunk Cloud using MuleSoft ESB. I have registered to Splunk Cloud and I am provided with the host (xxxxxxxxx.cloud.splunk.com). But via MuleSoft I am not able to connect. I could not even ping or telnet the host. I am also not aware of the port. I have tried these combination of ports (9997, 8089, 1024, 443, 8000). But none are reachable.

Could anyone help me on this.

Thanks,
Amala

Tags (2)
0 Karma
Reply

lguinn2
Legend
‎04-08-2016 04:08 PM

First, I have edited your question to remove the actual host name from the post. You really shouldn't expose that information to the general public.

Second, to connect to a Splunk Cloud server, you also need the right certificates and authentication. My guess is that this is the problem.

For a forwarder, there is a special app that provides the authentication that you need. I am not familiar with the Mulesoft ESB, but another alternative is to use the HTTP Event Collector (HEC). In order to use the HEC, you need a security token that must be provided with each event that is submitted.

You will need to get the special app or the security token from your admin team. File a ticket with them.

0 Karma
Reply

mragavan
New Member
‎05-31-2019 08:10 AM

Hi,

I tried using HEC and configured log4j as mentioned below in Mule. Im getting connection timed out error. 

    <Http name="Splunk"
        url="https://*****.com:8088/services/collector/raw">
        <Property name="Authorization" value="*****" />
        <PatternLayout pattern="%-5p %d [%t] %X{correlationId}%c: %m%n" />
    </Http>

2019-05-31 20:37:13,484 Log4j2-TF-7-AsyncLoggerConfig--4 ERROR Unable to send HTTP in appender [Splunk] java.net.ConnectException: Connection timed out: connect

Any idea.

0 Karma
Reply
Get Updates on the Splunk Community!

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...

Combine Multiline Logs into a Single Event with SOCK: a Step-by-Step Guide for ...

Combine multiline logs into a single event with SOCK - a step-by-step guide for newbies Olga Malita The ...