Difference between revisions of "Splunk"

From Ever changing code
Jump to navigation Jump to search
(Created page with "= Splunk forwarder = Setup splunk-forwarder agent on Linux <source lang=bash> ./splunk set deploy-poll splunk.acme.com:8089 ./splunk show deploy-poll ./splunk enable listen...")
(No difference)

Revision as of 08:14, 19 August 2020

Splunk forwarder

Setup splunk-forwarder agent on Linux 

./splunk set  deploy-poll splunk.acme.com:8089
./splunk show deploy-poll
./splunk enable  listen 9997
./splunk display listen
./splunk set  servername <serverName|hostname>
./splunk show servername
./splunk set  default-hostname <serverName|hostname>
./splunk show default-hostname
./splunk list forward-server
./splunk enable boot-start
Retrieved from ‘http://wiki.ciscolinux.co.uk/index.php?title=Splunk&oldid=5748