Terraform
We've created a Terraform script that will set up a few resources you can use to try out LogSlash. You can find those resources in our public copper-interface GitHub repository.
Setup
Clone the LogSlash interface repositories
Change into the
terraform
directory
Initialize the Terraform configuration
Deploy the infrastructure to your team's AWS instance
Update the constant values associated with your team's LogSlash AWS deployment
Log in to your team's AWS console
Navigate to: "Systems Manager" > "Parameter Store"
Select the constant value to be changed
Click Edit
Set "Value" to:
Usage
Upload log files into your team's LogSlash AWS Simple Storage Service (S3)
Log in to your team's AWS console
Navigate to: "S3"
Select the "copper-logs-bucket" S3 Bucket
Click Upload
Upload the log file(s) you'd like to be processed (note: this file(s) must be in .json, .xml, or .evt)
The LogSlash engine intelligently deduplicates and normalizes this file(s)
The processed files are sent to your team's Splunk HEC endpoint
The uploaded log files are deleted from the S3 Bucket
Removal
Change into the
terraform
directory
Destroy the AWS stack created via Terraform
Last updated