![]() ![]() See Analysis of Splunkbase Apps for Splunk ( ). See There is also an app that does what you seek. Once completed, I conducted tests by also running the searches via the REST API so I have documented that method as well. 1 Solution Solution richgalloway SplunkTrust 02-22-2023 06:09 AM Yes, there is an API for splunkbase. By using the REST Modular input, Firstly, go to the Splunkbase & download the latest release. I wanted to implement the gathering of results with a cron-scheduled bash script, so I decided to write the script with the scheduled search method. REST Command Run Download topic as PDF REST Command Run Administer your system with system management commands. How to get data from REST APIs into Splunk. ![]() We can run the search on a schedule and then pull the results right away, or we can pull the results of a scheduled saved search. Splunk Cloud Platform For information about Splunk REST API endpoints, see the REST API Reference Manual. search/jobs/export Stream search results as they become available. The rest command reads a Splunk REST API endpoint and returns the resource data as a search result. Returns a search ID (sid) that you use when accessing the results of a search. search/jobs Create searches or access the results of search jobs. We can accomplish my goal one of two ways. Here is a brief description of some of the key endpoints for creating and accessing searches. The local Splunk instance is running on IP address 192.168.0.70 with the default REST interface running HTTPS on TCP 8089. This data is already indexed on my local Splunk instance so all I have to do is search for it. One of the things I wanted to display was the count of accepted and blocked connections through my firewall. I don’t think they had a good proof of concept that showed a fully working use case however, their documentation on all the available features is quite in-depth: I was able to complete this task utilizing the documentation that Splunk has provided for searching via the REST API. Therefore, I wanted a way to display all of the data with the console. This display board would be simple enough to just present a number of Splunk dashboards on the display, while being able to avoid running a window environment, web browser, and all of the associated overhead on my relatively weak Pi Zero W. As a way to justify essentially useless equipment around my house, I wanted to make a Raspberry Pi driven display board. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |