Is there a way data from Splunk can be indexed into elasticserach considering few tens of TB of data? Is there any utility program which can be used to export data from splunk?
Thanks.
Would this help you?
Thanks. I have seen this blog. Since splunk data few tens of TB, instead of REST API or ODBC, an approach of exporting the data to filesystem (csv or JSON files)will help.
You can also use the Splunk API to export data, or you can connect via ODBC. The approach you use will depend on the use case, volume of data, and type of data you are working with.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.