Home
Configuring Forwarders
Describes configurations required to enable hub to forward data to different targets.
Forwarding to Splunk
This section identifies how to add Hub to the list of sources for a Splunk forwarder.
Configuring the Splunk Forwarder
Refer to the Splunk documentation to install the forwarder software on the Splunk forwarding server and connect it to the server/indexer. After the forwarder is installed, follow these steps to add Hub to the list of sources for the forwarder:

Introduction to Ironstream Hub
Introduction to Ironstream Hub and related concepts.
Configuring Ironstream Hub
Describes the configuration files and locations and details out the process of configuring hub to ibm i/ibm z agents.
Configuring Forwarders
Describes configurations required to enable hub to forward data to different targets.
- Forwarding to Splunk
  This section identifies how to add Hub to the list of sources for a Splunk forwarder.
  - Overview
    Hub file targets write data, to the Log Directory, as a JSON formatted field and value pair, meaning any of the files created can be forwarded to Splunk via a Splunk Forwarder.
  - Configuring the Splunk Forwarder
    Refer to the Splunk documentation to install the forwarder software on the Splunk forwarding server and connect it to the server/indexer. After the forwarder is installed, follow these steps to add Hub to the list of sources for the forwarder:
- Forwarding to Kafka
  This section describes how to configure different choices for forwarding data to Kafka. You can use Hub’s internal Kafka producer or write data to a file target that can be forwarded to Kafka.
- Forwarding to Logstash
  This section describes how to configure Hub to forward a File Target to Logstash.
Monitoring the Hub System
Identifies the real time metrics logged by Ironstream Hub.
Hub Command-line Application
Describes the commands available in the Hub Command-line application to perform local actions and receive information.
Troubleshooting Hub
Provides resolutions to your most frequent queries while using Ironstream Hub.
Appendices
Reference information
Notices
Copyright 2022, 2022 Precisely

Configuring the Splunk Forwarder

Refer to the Splunk documentation to install the forwarder software on the Splunk forwarding server and connect it to the server/indexer. After the forwarder is installed, follow these steps to add Hub to the list of sources for the forwarder:

Edit the inputs.conf file in this directory:
- On Linux: /Splunk installation directory/etc/system/local/
- On Windows: \Splunk installation directory\etc\system\local\
Create a new inputs.conf file in this directory if it does not already exist.

Add these five lines to the end of the inputs.conf and save the file.

On Linux:

[monitor:///<install location>/log/<hostname>\.<type of file>\.(.+)\.log]
host_regex = <hostname>\.<type of file>\.(.+)\.log
index = <desired index>
sourcetype = _json
disabled = false

On Windows:

[monitor://<install location>\log\<hostname>\.<type of file>\.(.+)\.log]
host_regex = <hostname>\.<type of file>\.(.+)\.log
index = <desired index>
sourcetype = _json
disabled = false

If the installation path was changed during the installation, modify the first line to reference the new path.

The index value should be changed to a site-defined index name.
Restart the Splunk forwarder.
- On Linux: Splunk installation directory/bin/splunk restart
- On Windows: Restart the Splunk Forwarder service “splunkd” from the Windows Services utility.