MDR Fluentd Notes.md 660 B
MDR Fluentd Notes.txt
Fluentd is part of Treasure Data. So the service name is td-agent.
systemctl status td-agent
Fluentd is installed on afs-splunk-syslog-1. Fluentd will not start unless the directories specifid in the config file are created.
salt -L 'afs-splunk-syslog-1' cmd.run 'ls -larth /opt/syslog-ng/' salt -L 'afs-splunk-syslog-1' cmd.run 'mkdir /opt/syslog-ng/zscaler_firewall/' salt -L 'afs-splunk-syslog-1' cmd.run 'mkdir /opt/syslog-ng/zscaler_dns/' salt -L 'afs-splunk-syslog-1' cmd.run 'chown td-agent:td-agent /opt/syslog-ng/zscaler_firewall/' salt -L 'afs-splunk-syslog-1' cmd.run 'chown td-agent:td-agent /opt/syslog-ng/zscaler_dns/'