Debugging app deployment to AWS cluster

Deployment Architecture

Hello,

I have an on-prem Splunk cluster and an AWS cluster. Each one has its own indexers and clustermaster, though only the on-prem setup has a search head and a deployment server.

When I use the deployment server to deploy configurations to a splunk forwarder in AWS, it keeps failing to deploy. I have checked:

Forwarder is installed on machine to send logs

DS can contact the machine to send apps via port 8089

I used TCPDump on the forwarder machine on port 8089 and can see packets from the deployment server

Unfortunately all I can get from the internal logs is this delightfully descriptive error message:

05-19-2021 08:04:42.818 +0200 WARN ClientSessionsManager - ip=<omitted> name=<omitted> Updating record for sc=<serverclass name> app=<app name>: action=Download result=Fail checksum=0

Can anyone suggest more areas to look at? I can't figure out why it is not deploying properly.

Get Updates on the Splunk Community!

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

If you’ve ever deployed a new database cluster, spun up a caching layer, or added a load balancer, you know it ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Financial fraud isn't slowing down. If anything, it's getting more sophisticated. Account takeovers, credit ...

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...

Are you a member of the Splunk Community?