We’re looking to get our Kubernetes logs into Splunk and it appears the best (most cloud native) way to do that is to forward the logs from Fluentd to Splunk HEC (HTTP Event Collector). With that being said, we see where there are a number of plugins that people have developed for Fluentd for this use-case, see: [Fluentd Plugins][1] Could you guys please tell us if any of these were developed by Splunk employees or are officially vetted/supported?
![Fluentd Plugins for Splunk][2]
Does Splunk have another cloud native solution that they recommend instead? Don’t say the UF (Splunk Universal Forwarder). I also found [this][3] Splunk Answers post regarding the same topic for a bit of background on what others were doing cloud natively. Thanks for any assistance with this question.
Thanks & Best regards,
Matt
[1]: https://www.fluentd.org/plugins
[2]: /storage/temp/216674-screen-shot-2017-10-03-at-120152-pm.png
[3]: https://answers.splunk.com/answers/525617/how-can-we-log-and-containerize-the-logs-using-kub.html
↧