Stream logs to Sumo Logic

DataStream supports sending log files to Sumo Logic to help you make data-driven decisions and reduce the time to investigate security and operational issues.

For security reasons, DataStream sends logs over TLS even if Sumo Logic policies allow insecure requests.

Before you begin

In Sumo Logic, configure an HTTP logs and metrics source and configure your Sumo Logic URL endpoint to upload log data. See Sumo Logic source configuration.

How to

  1. In Destination, select Sumo Logic.
  2. In Display name, enter a human-readable description for the destination.
  3. In Endpoint, enter an HTTP source address where you want to send logs. The endpoint URL should follow the https://[SumoEndpoint]/receiver/v1/http format. See Uploading data to an HTTP source.
    Note: The full Sumo Logic endpoint URL can contain the collector code, but you should enter it separately in the Collector code field to hide your Sumo Logic account details.
  4. In Collector code, enter the unique HTTP collector code from your Sumo Logic endpoint URL, that is the last string from the URL in the https://[SumoEndpoint]/receiver/v1/http/[UniqueHTTPCollectorCode] format.
  5. If you want to send compressed gzip files to your destination, check the Send compressed data box.
  6. Click Validate & Save to validate the connection to the destination and save the details you provided.