Deployment Architecture
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

High Availablity Implementation-Cluster

vijreddy30
Loves-to-Learn Everything
‎12-25-2023 12:17 AM

Hi Team,

 

In my project need to be implement High Availability servers in below Servers are using.

Z1-->L4 -->SearchHead+Indexer single instanceonly(Dev) 

             SearchHead+Indexer single instanceonly(QA)

DeploymentServer(QA)

HearvyForwarder(Prod)

DeploymentServe(Prod)

--------------------------------------------------

App related below server:

 

Z2 --> HearvyForwarder(Prod,Dev,QA) individual Servers

Z3--> HearvyForwarder(Prod,Dev,QA) individual Servers

 

The above App related servers are connected Deployment server and SearchHead+Indexer

Note : my project there is no Cluster master

 

Please help how do we implement the High Availability implementation, please help the guide the above servers.

 

 

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎12-25-2023 12:32 AM

Hi @vijreddy30,

let me understand, quich kind of HA do you want to  impement?

if HA on data, you need an Indexer Cluster: you need at least two Indexer and a Cluster master, you can find more information at https://docs.splunk.com/Documentation/Splunk/9.1.2/Indexer/Basicclusterarchitecture

If Ha in the presentation Layer, you neet a Search Head Cluster:, at least three Search Heads and a Deployer, as described at https://docs.splunk.com/Documentation/Splunk/9.1.2/DistSearch/SHCarchitecture

If at ingestion level, you need at least two Heavy Forwarders and a Load Balancer.

Ciao.

Giuseppe

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎12-27-2023 01:11 AM

Hi

it's just as @gcusello said. You cannot create HA environment without indexer cluster. That needs minimum three nodes: manager node and minimum two peer.

Here is https://www.splunk.com/en_us/pdfs/tech-brief/splunk-validated-architectures.pdf document which you should read and use as a base instructions how different splunk installations are working and for what purpose those are targeted.

r. Ismo

0 Karma
Reply

vijreddy30
Loves-to-Learn Everything
‎01-02-2024 12:37 AM

Thanks for your help.

 

In my project there is no Cluster master, Deployment Server have, can i user deployment server as Cluster master?

SearchHead and Indexer are single instance.

 

Regards,

Vij

 

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎01-03-2024 12:26 AM

Hi @vijreddy30 ,

you need a Cluster Manager only if you have an Indexer Cluster, so at least two Indexers.

Anyway, you cannot use a Deployment Server as Cluster Manager and you cannot use the same server for these roles:

  • Cluster Manager must have a dedicated server,
  • Deployment Server can be in a shared server (not Search Head Or Indexer or Cluster Manager) only if it has to manage less than 50 clients, otherwise a dedicated server is required.

Ciao.

Giuseppe

0 Karma
Reply

vijreddy30
Loves-to-Learn Everything
‎01-03-2024 06:08 AM

Thanks for your guidelines. 

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎01-03-2024 07:02 AM

Hi @vijreddy30 ,

let us know if we can help you more, or, please, accept one answer for the other people of Community.

Ciao and happy splunking

Giuseppe

P.S.: Karma Points are appreciated by all the Contributors 😉

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎01-03-2024 12:21 AM

Hi

based on this document https://docs.splunk.com/Documentation/Splunk/9.1.2/Deploy/Manageyourdeployment you cannot combine DS and CM on same server instance.

r. Ismo

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Event Series: Telemetry Pipeline Management

Balancing Scale and Spend: Gaining Control Over High-Volume Metrics in Splunk Observability Cloud As ...

Kick the Tires Before You Commit: A Hands-On Tour of the Splunk Observability Cloud ...

Evaluating an enterprise observability platform usually goes like this: fill out a form, get a free trial with ...

Deep insights, no barriers: Splunk Observability Cloud Free Edition

As software delivery cycles continue to accelerate, observability shouldn’t be a luxury — it should be a ...