LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

Select Accept to consent or Reject to decline non-essential cookies for this use. You can update your choices at any time in your settings.

Start free trial Sign in

From the course: Learning Splunk

Unlock the full course today

Join today to access over 24,800 courses taught by industry experts.

Configure remote data

Configure remote data - Splunk Tutorial

From the course: Learning Splunk

Start my 1-month free trial Buy for my team

Configure remote data

“

- [Speaker] Now that we have the forwarder installed, we're ready to add our Splunk server and some data sources for the web server. If your Docker stack isn't already up and running, run docker compose up and that should get those two running. And then we'll switch to a different terminal here. And this time let's do the same thing we did in the last one, but we'll connect to web2 instead. So we'll say Docker exec -it web2 bash. And here we are logged into our web2 instance now. So first, let's CD /opt/splunkforwarder/bin, and I'll clear the screen here and we'll type ./splunk start. And you'll see a couple of warning messages here. This is just because we're using a container so it can't quite find the user it's expecting to. But those are okay to ignore. Let's just clear our screen again. Now we want to add our Splunk server as a place we can forward logs and docker provides handy DNS so that we can just use the short name of that container. So we'll just use ./splunk add…

Contents

- (Locked)
  
  Next steps
  
  2m 5s