I have squid and dansguardian setup and working great. I also have a splunk server running.I would like to be able to send the access.log files from dansguardian to my splunk server. I was wondering if there was a way to do this using syslog. Is there any way to get splunk to tail this file even? I would really like to keep any eye on the incoming requests, but I don't want to have to keep a terminal up constantly. Any help would be great!

are they on the same box or different ones? if they are the same box then you can just tell splunk to tail the file direct from disk. if it's a seperate box, then if the data is logged to syslog (you can make squid itself do this with the "access_log syslog" directive, or something similar...) then if you use a modern syslog solution like syslog-ng then you can absolutely make it spit a copy of the log across to a tcp connection on splunk as well as writing it to a local file. alternatively, make the text log file accessible readonly over nfs and splunk can then directly read the file over the network.