Cribl Stream How-To: Configuring Syslog Sources (Walkthrough)

Here’s a walkthrough of how to configure a new Sylog source in Cribl Stream, Cribl’s data processing engine. We’ll focus on the setup of this in a Cribl Cloud account, Cribl’s as a service offering and the best way to take advantage of the suite of products. We’ll perform the following steps for you to follow along: *Note: Most of these steps will apply to an on-premise/customer-managed installation. First, we’ll configure a source in Cribl Stream. We’ll send our log and event data to this source. We have the option to use Cribl Cloud / “SaaS”-managed Workers or Hybrid / Self-Managed Workers. We’ll cover both scenarios, so pick the best option for your environment from the chapters below. Next, we’ll configure our Syslog Sender to point to point to the Cribl Workers. The Workers will receive the data, wherein the data can be optimized and enriched as needed. We’ll show you how to simulate this with a test using Netcat. Finally, we’ll give you a topline overview of using Pipelines and Routes to get the optimized data to its final destination. Chapters: 00:00: Overview and Steps: Configuring Syslog Sources in Cribl Stream Cribl-Managed / "Saas" Cloud Workers 01:21: Walkthrough: Setting Up a Syslog Source and Sending Data to Cribl-Managed / "Saas" Cloud Workers 02:14: Walkthrough: Configuring Syslong Senders to Point to Cribl-Managed / "Saas" Cloud Workers 03:07: Walkthrough: Sending Netcat Test Messages to Confirm Data is Received as Expected (Cribl-Managed / "SaaS" Cloud Workers) Hybrid / Customer-Managed Workers 04:03: Walkthrough: Setting up a Syslog Source and Sending Data to Hybrid / Customer-Managed Workers 04:50: Walkthrough: Configuring Syslong Senders to Point to Hybrid / Customer-Managed Workers 06:18: Walkthrough: Sending Netcat Test Messages to Confirm Data is Received as Expected (Hybrid / Customer-Managed Workers) 06:54: Topline Overview: Creating Pipelines and Routes to Send Data Out 07:15: Recap, Next Steps, & More Info Cribl Sandboxes: https://sandbox.cribl.io Join the Cribl Community: https://community.cribl.io Cribl Docs to Reference: Cribl Docs “Syslog Source - Configure Cribl Stream to Receive Data over Syslog”: https://docs.cribl.io/stream/sources-... Cribl Docs “Integrating with Other Services - Syslog Best Practices”: https://docs.cribl.io/stream/usecase-... Cribl Docs ”Syslog to Cribl Stream Reference Architecture”: https://docs.cribl.io/reference-archi... Cribl Docs “Working with Data - Pipelines”: https://docs.cribl.io/stream/pipelines/ Cribl Docs “Working with Data - Routes”: https://docs.cribl.io/stream/routes/ Cribl Docs “Working with Data - Packs”: https://docs.cribl.io/stream/packs/ ℹ️ Learn more about Cribl University and sign up for your free Cribl University account now: https://cribl.io/university/?utm_camp... 📈 Elevate your Cribl knowledge, directly login to (or sign up for) your free Cribl University account here: https://login.cribl.cloud/samlp/YvQeD... Follow Cribl: LinkedIn:   / cribl   Twitter: https://x.com/cribl_io Sign up for a Cribl.Cloud account: https://cribl.cloud/signup/ Learn more about Cribl: https://cribl.io