Skip to content

feat: add SNI configuration option for HEC TLS destinations#2966

Draft
sbylica-splunk wants to merge 22 commits intodevelopfrom
feat/sni_configuration
Draft

feat: add SNI configuration option for HEC TLS destinations#2966
sbylica-splunk wants to merge 22 commits intodevelopfrom
feat/sni_configuration

Conversation

@sbylica-splunk
Copy link
Copy Markdown
Contributor

@sbylica-splunk sbylica-splunk commented Mar 20, 2026

Add SC4S_DEST_SPLUNK_HEC__SNI env var to enable TLS Server Name Indication on HEC destinations. This allows SSL/TLS passthrough load balancers to route HTTPS traffic based on the target hostname sent during the TLS handshake.

Made-with: Cursor

renovate bot and others added 22 commits February 25, 2026 10:20
@renovate
chore(deps): update ghcr.io/axoflow/axosyslog docker tag to v4.23.0 (#…
d67044a 
…2930)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update actions/upload-artifact action to v7 (#2933)
ae52d1f 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@Kawron
fix: accept splunk general terms (#2940)
37c5104
@Kawron
fix: use google.com domain as splunk ptr is missing (#2944)
6821072
@sbylica-splunk
chore: update test matrix action to 3.1.4 (#2945)
dbd2c2f
@renovate @Kawron
chore(deps): update docker/setup-qemu-action action to v4 (#2942)
76f0c48 
* chore(deps): update docker/setup-qemu-action action to v4


---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Karol Wrona <92540652+Kawron@users.noreply.github.com>
@renovate
chore(deps): update dependency mkdocs-material to v9.7.4 (#2939)
fb56238 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update docker/login-action action to v4 (#2941)
b6b330f 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update docker/setup-buildx-action action to v4 (#2947)
5f55a8a 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@sbylica-splunk
Config script updates (#2938)
a4773d6 
* feat: added validation for url and token in config script. Added user and password for test command examples

* feat: added confirmation for config file creation

* feat: added numeric input validation to config tool

* feat: added --help to config tool

* feat: added more options for hardware based config tool

* feat: added some more info to config script

* feat: added IW_SIZE for UDP, refactored some code for config tool

* feat: added time zone config option for configuration script
@sbylica-splunk
Docs/configuration tool (#2948)
c98efa3 
* docs: added better docs for configuration tool
@renovate
chore(deps): update docker/metadata-action action to v6 (#2950)
2ec2952 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update docker/build-push-action action to v7 (#2949)
d51b175 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): lock file maintenance (#2934)
b7f2c76 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@Kawron
fix: fix local sc4s and splunk setup for tests (#2935)
c8a27d4 
* fix: fix local sc4s and splunk setup for tests

* fix: add timezone information to tests

* fix: inacruate timestamp trimming

* fix: add udp ports for 514 and 5614

* fix: use latest splunk and add additional waiting time to avoid flaky test for docker splunk
@digrajpu
fix: Netscout host issue (#2954)
d3c55a9 
* fix: Attempte to override splunk host with deviceHostName for NETSCOUT

* fix: Add dynamic host extraction and metadata for Netscout AED

* fix: Clean code

* fix: Added the fix to lite package

* fix:prevented sensitive data in logs
@renovate
chore(deps): update dependency black to v26 [security] (#2961)
328bc25 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update dependency setuptools to v82.0.1 (#2955)
81f132d 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update dependency mkdocs-material to v9.7.5 (#2956)
4ae04f0 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@sbylica-splunk
docs: Add Splunk Monitoring Console health check documentation for SC…
7ac1f5e 
…4S (#2963)

* docs: Add Splunk Monitoring Console health check documentation for SC4S
* docs: fixed some broken examples from our docs
@renovate
chore(deps): update dependency mkdocs-material to v9.7.6 (#2965)
bfa091a 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@sbylica-splunk
feat: add SNI configuration option for HEC TLS destinations
dcf1195 
Add SC4S_DEST_SPLUNK_HEC_<ID>_SNI env var to enable TLS Server Name
Indication on HEC destinations. This allows SSL/TLS passthrough load
balancers to route HTTPS traffic based on the target hostname sent
during the TLS handshake.

Made-with: Cursor
@sbylica-splunk
Copy link
Copy Markdown
Contributor Author

sbylica-splunk commented Mar 23, 2026

Pr addresses this issue: #2700

Base automatically changed from develop to main March 31, 2026 07:13
@ajasnosz ajasnosz changed the base branch from main to develop March 31, 2026 09:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rjha-splunk rjha-splunk Awaiting requested review from rjha-splunk rjha-splunk will be requested when the pull request is marked ready for review rjha-splunk is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sbylica-splunk @Kawron @digrajpu