Graylog to SPLUNK

pfabrizi · June 19, 2018, 7:47pm

We are new to SPLUNK and originally we were going to us the UF from SPLUNK but we have now decided to forward from Graylog to SPLUNK using the graylog add-on.

I have this setup (inputs.conf) using TCP listener on port 9997.

When I look in the splunk log I see errors indicating the payload is too large. I have tried everything. Has anyone had an experience with this? these are windows security events.

Thanks!

system · July 3, 2018, 7:59pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog2 plugin for Splunk Graylog Add-ons	5	1928	March 6, 2017
Use Splunk Universal Forwarder to Graylog Graylog Central (peer support)	4	1881	March 11, 2019
Problem sending logs to Graylog Inputs from external source Graylog Central (peer support)	7	1014	February 19, 2020
Graylog2Splunk question Graylog Add-ons	1	538	February 19, 2021
Graylog inputs do not seem to be working Graylog Central (peer support)	5	2934	September 7, 2018

Graylog to SPLUNK

Related topics