/k8splunk

Send kubernetes logs to splunk using fluentd

Primary LanguageSmartyMIT LicenseMIT

k8splunk

Send kubernetes logs to splunk using fluentd

Before start

Update td-agent.conf

<match **>
  # Other settings omitted for brevity
  server your-splunk-endpoint-here
  token your-splunk-hec-token
</match>

Create config-map for td-agent.conf

./create-config-map.sh

Deploy Manually

build Docker image

docker build -t ziyasal/k8splunk:{tag} .

Deploy Daemonset

kubectl create -f k8splunk-ds.yaml

To deploy local splunk (demo purpose only)

⚠️ Demo splunk installation requires to configure http event collector to receive logs (setup link)

kubectl create -f splunk-rc.yaml -f splunk-svc.yaml

Deploy via Helm

⚠️ Required changes in values.yaml file;

image:
  repository: your-repository
  
# and

pull:
  secretName : your-secret-name

Package

helm package k8splunk

Install chart

helm install k8splunk-{your version}.tgz