Hi,
Am a newbie to splunk, I am able to install splunk but i am not able to understand forwarders and where and how to use them.
e.g : 192.168.0.1 [Splunk Server running on Linux]
192.168.0.2 [ Apache running and MySQL ]
192.168.0.3 [ Syslog-ng server]
How to setup splunk so that it can monitor apache/mySQL and other services log and also the syslog. If you have any step-by-step doc please share it across, I read documentation but i didnt able to setup.
My second question is, do i need to install splunk-forwader in 192.168.0.2 and 3 so that the splunk server can talk to them? and where we need forwader and why. If i need to install splunk-forwader then how to configure it.
I know am asking silly question may be,but sorry am not able to follow the documentation.
Your help will be appreciated.
BR,
Neo
... View more