Unsolved
This post is more than 5 years old
5 Practitioner
•
274.2K Posts
0
703
Splunk and centera integration
Hi all
My customer is asking for help to integrate centera logs with Splunk.
Looks like we must find a way to transfer centera logs to Splunk server.
Has anyone come across such an integration?
Thanks a lot
Julio Montes
mfh2
208 Posts
0
June 15th, 2016 08:00
Hello Julio -
If I understand your query correctly, your customer is using a commercial log archiving system which stores the historical data (firewall logs perhaps? trading logs?) on Centera WORM storage. The customer would like to access this data for analysis with Splunk.
Not being a Splunk expert, I suppose it is possible to write a Centera API connector for Splunk that would facilitate this connection.
If that is not viable, perhaps exporting the log data from Centera to WORM-capable NAS (such as FLR on VNX or Isilon SmartLock) would be preferable? Your archiving application may have a built-in feature to do this. If not, my company (Interlock Technology) would be able to perform this data copy and transformation operation as a professional services engagement. Our Centera migration system performs at very high speeds for large log file objects; we have seen copy rates from Centera to Isilon at over 30TB/day in previous engagements.
Best Regards,
Mike Horgan