Back to source plugin

Export from AWS to Splunk

CloudQuery is an open-source data integration platform that allows you to export data from any source to any destination.

The CloudQuery AWS plugin allows you to sync data from AWS to any destination, including Splunk. It takes only minutes to get started.

AWS
aws
Official
Premium

AWS

The AWS Source plugin extracts information from many of the supported services by Amazon Web Services (AWS) and loads it into any supported CloudQuery destination

Publisher

cloudquery

Latest version

v27.7.0

Type

Source

Platforms
Date Published

Splunk
splunk
Official

Splunk

This plugin is in preview.

The Splunk destination plugin syncs data from any CloudQuery source plugin(s) to Splunk

Publisher

cloudquery

Latest version

v0.1.2

Type

Destination

Platforms
Date Published

MacOS Setup

Step 1. Install CloudQuery

brew install cloudquery/tap/cloudquery

Step 2. Log in to CloudQuery CLI

cloudquery login

Step 3. Configure AWS source plugin

You can find more information about the configuration in the plugin documentation

kind: source
spec:
  # Source spec section
  name: aws
  path: cloudquery/aws
  registry: cloudquery
  version: "v27.7.0"
  tables: ["aws_ec2_instances"]
  destinations: ["splunk"]
  # Learn more about the configuration options at https://cql.ink/aws_source
  spec:
    # Optional parameters
    # regions: []
    # accounts: []
    # org: nil
    # concurrency: 50000
    # initialization_concurrency: 4
    # aws_debug: false
    # max_retries: 10
    # max_backoff: 30
    # custom_endpoint_url: ""
    # custom_endpoint_hostname_immutable: nil # required when custom_endpoint_url is set
    # custom_endpoint_partition_id: "" # required when custom_endpoint_url is set
    # custom_endpoint_signing_region: "" # required when custom_endpoint_url is set
    # use_paid_apis: false
    # table_options: nil
    # scheduler: shuffle # options are: dfs, round-robin or shuffle
    # use_nested_table_rate_limiting: false 
    # enable_api_level_tracing: false

Step 4. Configure Splunk destination plugin

You can find more information about the configuration in the plugin documentation

kind: destination
spec:
  name: splunk
  path: cloudquery/splunk
  registry: cloudquery
  version: "v0.1.2"
  write_mode: "append"
  spec:
    # Splunk Cloud configuration parameters
    host: "${SPLUNK_HOST}"
    port: 8088
    hec_token: "${SPLUNK_HEC_TOKEN}"
    
    # Optional parameters
    # tls: true
    # index: main
    # concurrency: 16
    # batch_size: 1000
    # batch_size_bytes: 5242880

Step 5. Run Sync

cloudquery sync aws.yml splunk.yml

© 2024 CloudQuery, Inc. All rights reserved.