Splunk node by Kumologica integrates seamlessly with Splunk (opens new window) cloud infrastructure. Enabling to send the application log events from Kumologica flow to Splunk logs.
For Splunk node to work properly, you need to have a valid subscription of Splunk cloud instance running and available to access over https. Ensure to have an HEC token (opens new window) generated for the node to connect with a given instance of Splunk.
To install the node from designer:
- Go to Add more nodes option on the palette section.
- Check for the Splunk node and click install.
- Once installed, the designer is required to be restarted.
To install the node from CLI:
- Go to your project workspace where you can see your
- Run the below give npm command.
npm i @kumologica/kumologica-contrib-splunk
# Technical Details
- Host (Required)
Hostname of the Splunk cloud instance to connect.
- Port (Required)
Port number associated with the Splunk cloud instance.
- Splunk HEC Token (Optional)
HEC Token key for authenticating with the platform. The node expects the HEC token (opens new window) for authenticating with the platform.
- Message (Optional)
Log message to sent.
Splunk node throws the following exception.
The payload or variable will not be overwritten or enriched by this node.
# Develop a Service
- Drag and drop EventListener node from the pallet to the canvas and open the EvenListener node settings, configure the following and click Save.
Display Name : POST /order Event Source : Amazon API gateway Verb : POST URL : /order
- Add Splunk node to the canvas and open the Splunk node settings, configure the following and click Save.
Display Name : Log_Entry Host : hostname of your Splunk account Port : 8088 Message : msg.payload Splunk HEC Token : Splunk HTTP Event collector Token
Wire the EventListener Node to the Splunk Node.
Add EventListener End node from the palette to the canvas. Open the settings, configure the following and Save.
Payload : msg.payload
Wire the Splunk node to the EventListener End node.