Configure enterprise Splunk in docker, so services can log to HTTP Event Collector over HTTP
Have you tried using a default.yml
as detailed here?
https://splunk.github.io/docker-splunk/ADVANCED.html#usage
Example
splunk: hec: enable: True ssl: false port: 8088 # hec.token is used only for ingestion (receiving Splunk events) token: <default_hec_token>