We use cookies to ensure that we give you the best experience on our website. By continuing your visit on the website, you consent to the use of the cookies. If you want to find out more about the cookies we use, you can access our Privacy Policy.
Please join us for the May meeting of the Splunk Toronto User Group. Topics include Splunk Operator for Kubernetes and Syslog Ingestion leveraging HEC
About this event
Please join us for the May Splunk Toronto User Group event. Food and beverages will be provided.
Location: Splunk WeWork Office - 1 University Ave, Toronto, ON, M5J2P1
Agenda: 545pm - Doors open, Food & Beverage available 6pm - 645pm - Topic 1 - Splunk Operator for Kubernetes: Up and Running - Thulasi Krishnan 645pm - 730pm - Topic 2 - Syslog Ingestion with Little Config, Low Storage and Low Maintenance - Kevin Mannion 730pm - Close out
Kubernetes has been all the fad lately. Let's take a look at how we can run Splunk on top of Kubernetes. In this session, we take a look at how it is made possible using the Operator pattern, pros and cons of running Splunk on Kubernetes using Operator, how to set up a simple Splunk clustered environment, how to leverage the app deployment framework and how to configure SmartStore.
10:45 PM
Syslog Ingestion with Little Config, Low Storage and Low Maintenance
In this topic we will focus on exploring ways HTTP Event Collection (HEC) from syslog relays can be an alternative solution to traditional forwarders. The goal being that syslog ingestion can be instrumented through HEC with little configuration, low amount of storage and most importantly, little maintenance.