Fluent Forward receiver π
The Fluent Forward receiver allows the Splunk Distribution of OpenTelemetry Collector to collect events using the bundled Fluentd application. The supported pipeline type is logs. See Process your data with pipelines for more information.
The receiver accepts data formatted as Fluent Forward events through a TCP connection. All three Fluent event types, message, forward, and packed forward, are supported, including compressed packed forward.
Note
Fluentd is deactivated by default for Linux and Windows. To activate it, use the --with-fluentd option when installing the Collector for Linux, or the with_fluentd = 1 option when installing the Collector for Windows.
Get started π
By default, the Splunk Distribution of OpenTelemetry Collector includes the Fluent Forward receiver in the logs pipeline when deploying in host monitoring (agent) mode. See Collector deployment modes for more information.
The default configuration of the fluentforward receiver in the Splunk Distribution of OpenTelemetry Collector is the following:
receivers:
fluentforward:
endpoint: 127.0.0.1:8006
service:
pipelines:
logs:
receivers: [fluentforward, otlp]
processors:
- memory_limiter
- batch
- resourcedetection
For more information on how to install Fluentd when manually installing the Collector, see:
Settings π
The following table shows the configuration options for the Fluent Forward receiver:
Troubleshooting π
For troubleshooting Fluentd, see:
Caution
If you have a Log Observer entitlement or wish to collect logs for the target host with Fluentd, make sure Fluentd is installed and turned on in your Collector instance.