Fluent Forward receiver

The Fluent Forward receiver allows the Splunk Distribution of OpenTelemetry Collector to collect logs and events using the Fluent Forward protocol.

The Fluent Forward receiver allows the Splunk Distribution of the OpenTelemetry Collector to collect events using the bundled Fluentd application. The supported pipeline type is logs. See Process your data with pipelines for more information.

The receiver accepts data formatted as Fluent Forward events through a TCP connection. All three Fluent event types, message, forward, and packed forward, are supported, including compressed packed forward.

Get started

Follow these steps to configure and activate the component:

  1. Deploy the Splunk Distribution of the OpenTelemetry Collector to your host or container platform:

  2. Configure the receiver as described in the next document.

  3. Restart the Collector.

Next add the receiver in the logs pipeline:

receivers:
  fluentforward:
    endpoint: 127.0.0.1:8006

service:
  pipelines:
    logs:
      receivers: [fluentforward]

Settings

The following table shows the configuration options for the Fluent Forward receiver:

included

https://raw.githubusercontent.com/splunk/collector-config-tools/main/cfg-metadata/receiver/fluentforward.yaml

Troubleshooting

CAUTION: If you want to collect logs for the target host with Fluentd, make sure Fluentd is installed and turned on in your Collector instance.