syslog-ng documentation

Your main source of knowledge

The syslog-ng product family has an extensive documentation, covering everything from how to install a product to the most complex configuration and settings descriptions. If you cannot find an answer to your question, try the mailing list - our community is always eager to help.

syslog-ng Premium Edition

Contents

7.13. Splunk: Sending log messages to Splunk

Although syslog-ng PE currently does not have any built-in integration with Splunk, the existing message-formatting features and flexibility of syslog-ng PE allows you to forward your log messages to Splunk. In syslog-ng PE version 7.0.4 or later, you can use the http() destination. In earlier versions, you can use the program() destination.

For details on forwarding log messages to Splunk with syslog-ng PE see the following posts on the Splunk blog: