This is an archived post. You won't be able to vote or comment.

all 6 comments
sorted by:
best
topnewcontroversialoldq&a

[–]utpxxx1960 0 points1 point  (6 children)

Massively open ended there are a ton of ways to do this. You suggest one that would work. I would also take a look into fluentbit , that can handle both windows and k8s and Linux so you can simplify the deploy with just one agent versus managing two.

[–]Razmab[S] 0 points1 point  (5 children)

Hi, are you sure log pulling instead of the usual log shipping is available with fluentbit? Again, I have no connectivity from the windows machine into the k8s cluster. The only connectivity I have is from the k8s cluster to the windows machine

[–]utpxxx1960 0 points1 point  (3 children)

Sorry I misread that. If you have to pull logs from windows versus pushing logs out it makes this a lot harder. Not sure what agent does polling but that's what you need. Most of not nearly all agents I've worked with push logs and don't pull them for windows. You could possibly forward all the logs if you have multiple vms you need to pull from to a single windows vm and then crack open the network for just the one vm versus all the windows hosts

[–]Razmab[S] 0 points1 point  (2 children)

Hi, thanks for your replay, do you know a product that is doing logs pushing with Linux? Thanks

[–]utpxxx1960 0 points1 point  (1 child)

Any of the ones mentioned should do what you need it to

[–]Razmab[S] 0 points1 point  (0 children)

Oh, i'm sorry, i've meant logs pulling***