longlostnick/splunkstorm.sh

## splunkstorm.sh
# Splunk Storm
$ wget [ Download Splunk url ]
$ gunzip -c splunkforwarder-5.0-140868-Linux-x86_64.tgz | tar -xvpf -
$ ./splunkforwarder/bin/splunk start
$ ./splunkforwarder/bin/splunk install app stormforwarder_3de50bc823a711e2b4a81231390e9c34.spl -auth admin:changeme
$ ./splunkforwarder/bin/splunk login -auth admin:changeme
$ ./splunkforwarder/bin/splunk edit user admin -password whatever_you_want
$ ./splunkforwarder/bin/splunk add forward-server forwarder.splunkstorm.com:9997
$ ./splunkforwarder/bin/splunk add monitor /var/www/monologapp/log/fideloper.log	# Starts sending data
$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/error.log
$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/access.log
$ ./splunkforwarder/bin/splunk enable boot-start #http://docs.splunk.com/Documentation/Splunk/latest/admin/ConfigureSplunktostartatboottime
	# Splunk Storm
	$ wget [ Download Splunk url ]
	$ gunzip -c splunkforwarder-5.0-140868-Linux-x86_64.tgz \| tar -xvpf -
	$ ./splunkforwarder/bin/splunk start
	$ ./splunkforwarder/bin/splunk install app stormforwarder_3de50bc823a711e2b4a81231390e9c34.spl -auth admin:changeme
	$ ./splunkforwarder/bin/splunk login -auth admin:changeme
	$ ./splunkforwarder/bin/splunk edit user admin -password whatever_you_want
	$ ./splunkforwarder/bin/splunk add forward-server forwarder.splunkstorm.com:9997
	$ ./splunkforwarder/bin/splunk add monitor /var/www/monologapp/log/fideloper.log # Starts sending data
	$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/error.log
	$ ./splunkforwarder/bin/splunk add monitor /var/log/apache2/access.log
	$ ./splunkforwarder/bin/splunk enable boot-start #http://docs.splunk.com/Documentation/Splunk/latest/admin/ConfigureSplunktostartatboottime