Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Can deployment servers handle mirroring so changes on my main deployment server can replicate to gateway servers to push to secure domains?

cdoebert
Path Finder
‎10-28-2016 02:26 PM

For compliance reasons, we need to have gateway servers set up at the edges of our secure domains that can forward Splunk traffic into one main domain.

Putting an intermediate forwarder on the gateway is fine for traffic, but I would also like for the gateway server to be able to handle configurations, since the servers on the secure domain are unable to talk to my deployment server sitting in the main domain.

Can deployment servers handle mirroring, wherein I can make a change on my main deployment server and it replicates those changes to all my gateways, who can then push out those changes to all the servers on the secure domains? If not natively, what would be the best way to handle this scenario?

0 Karma
Reply

Masa
Splunk Employee
Splunk Employee
‎11-06-2016 04:34 PM

Splunk used to support Multi-tenant Deployment Server (Main Deployment Server to multiple sub-Deployment Server as repositories). But, the feature is not supported any more.
Splunk Deployment Server/Client requires tcp session establishing from DC to DS. Can you set firewall at the gateway to accept such communication? If not, you might need to put DS to each secure domains.

0 Karma
Reply

cdoebert
Path Finder
‎11-07-2016 02:16 PM

We have a DS in each secure domain, which I'm fine with, but it would be nice to not have to make modifications to an app in each of my domains. My ideal scenario is having a "main" DS that replicates its changes to the "sub" DS in each domain, who can then push out to the DC's in their domain.

The reason I'm attacking this angle is that otherwise, I would need to have all of my DC's in those secure domains contact my main DS in the general domain, and managing those firewall rules and all the security compliance therein would turn into my entire job.

0 Karma
Reply
Get Updates on the Splunk Community!

Stay Connected: Your Guide to May Tech Talks, Office Hours, and Webinars!

Take a look below to explore our upcoming Community Office Hours, Tech Talks, and Webinars this month. This ...

They're back! Join the SplunkTrust and MVP at .conf24

With our highly anticipated annual conference, .conf, comes the fez-wearers you can trust! The SplunkTrust, as ...

Enterprise Security Content Update (ESCU) | New Releases

Last month, the Splunk Threat Research Team had two releases of new security content via the Enterprise ...