longlostnick · November 5, 2013 03:52
diff --git a/splunkstorm.sh b/splunkstorm.sh
 # Splunk Storm
 $ wget [ Download Splunk url ]
 $ gunzip -c splunkforwarder-5.0-140868-Linux-x86_64.tgz | tar -xvpf -
 $ ./splunkforwarder/bin/splunk start
 $ ./splunkforwarder/bin/splunk install app stormforwarder_3de50bc823a711e2b4a81231390e9c34.spl -auth admin:changeme
 $ ./splunkforwarder/bin/splunk login -auth admin:changeme
 $ ./splunkforwarder/bin/splunk edit user admin -password whatever_you_want
 $ ./splunkforwarder/bin/splunk add forward-server forwarder.splunkstorm.com:9997
 $ ./splunkforwarder/bin/splunk add monitor /var/www/monologapp/log/fideloper.log	# Starts sending data
 $ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/error.log
 $ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/access.log
 $ ./splunkforwarder/bin/splunk enable boot-start #http://docs.splunk.com/Documentation/Splunk/latest/admin/ConfigureSplunktostartatboottime
	# Splunk Storm
	$ wget [ Download Splunk url ]
	$ gunzip -c splunkforwarder-5.0-140868-Linux-x86_64.tgz \| tar -xvpf -
	$ ./splunkforwarder/bin/splunk start
	$ ./splunkforwarder/bin/splunk install app stormforwarder_3de50bc823a711e2b4a81231390e9c34.spl -auth admin:changeme
	$ ./splunkforwarder/bin/splunk login -auth admin:changeme
	$ ./splunkforwarder/bin/splunk edit user admin -password whatever_you_want
	$ ./splunkforwarder/bin/splunk add forward-server forwarder.splunkstorm.com:9997
	$ ./splunkforwarder/bin/splunk add monitor /var/www/monologapp/log/fideloper.log # Starts sending data
	$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/error.log
	$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/access.log
	$ ./splunkforwarder/bin/splunk enable boot-start #http://docs.splunk.com/Documentation/Splunk/latest/admin/ConfigureSplunktostartatboottime