![]() ![]() Open Command Prompt/Terminal on your system. Select and download the right CURL package for your System. Step vi ) Copy the Token Value ( needed to specify token while sending data )ĬONGRATS!! You have created your first HTTP Event Collector Token.īut, before you distribute any of your tokens to index data directly to your Splunk, you must test it.īut its pretty simple, you can use CURL, a command line tool and library for transferring data with URLs. You can also know about : HEC (Http Event Collector) with Syslog-NG : Aggregated and Scalable Data Collection Method in Splunk Step iv) Review your HTTP Event Collector (HEC) Token (optional)ĭ) Select output group for this token.(optional) (optional)Ĭ) Give a suitable Description to your token. Step ii) Go to the Top Right Corner again and select New Token.ī) Enter any value in the “Source name override” only if you want the data coming from any source through this token to be overridden by this value. (depending on your requirement)į) Check or Uncheck “Enable SSL” depending on whether you want to send data over SSL/HTTPS or not. (If you have one)Į) Check or uncheck the “Use Deployment Server” option. ![]() ( we are using index “main” here)ĭ) Select a Default Output Group. In the top right corner locate and click on the button “ Global Settings”.ī) Select a Default source Type. Settings > Data Inputs > HTTP Event Collector Now that you have known the purpose of HTTP Event Collector(HEC), we can start configuring it to receive data. HTTP Event Collector(HEC) provides a reliable method to developers to send application logging and metrics data straight to Splunk Instances via HTTP in a fast,convenient,efficient and secure manner. More on this, HEC is based on Token, so you don’t have to hard-code your Splunk credentials in your app or supporting files. The HTTP Event Collector also sometimes abbreviated as “HEC” is an efficient way to send data to Splunk Instances,It enables you to send data over HTTP (or HTTPS) directly to Splunk Instances from your application.The HEC was created and introduced with application developers in mind, empowering the developers to send data to splunk by adding a few lines of code to an app for the app to send data. This post focuses on introducing/explaining and implementing HEC in the most simple way.įor those who are wondering what & why HTTP Event collector: Configuring HTTP Event Collector to receive data into Splunk ![]()
0 Comments
Leave a Reply. |