Deployment Architecture
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How do I submit a ticket to support?

damonmanni
Path Finder
‎03-11-2014 06:48 PM

We are brand new Splunk Enterprise implementation here at macys.com. We are rolling out 100's of forwarders. I've had no issues until now:

We are deploying linux forwarders and I am now hitting an issue. Sometimes it works completely, but now I see many servers are not recv'ing the deployment dir of Splunk_TA_nix or the
/opt/splunkforwarder/etc/apps/macys_lorain_forwarder_outputs/local/outputs.conf

I've restart splunk svc's, redeploy, etc... several times with no luck. I check the deployment UI and it shows my new client (under Client Tab) as checked in but nothing under Apps.

Another anomaly in this is that we've noticed that it may take hours b/f some servers get the Splunk_TA_nix dir, which is not right of course.

I have the exact steps I use to deploy the linux forwarder if you need to review.

Why is this breaking all of a sudden?
We cannot move ahead w/ 90 more deployments with this current issue. Help is appreciated.
cheers,
Damon

Tags (1)
0 Karma
Reply

Pierceyuk
Path Finder
‎03-12-2014 04:08 AM

Try a search like "index=_* hostname" it might highlight issues with the connection/host to help troubleshoot

0 Karma
Reply

piebob
Splunk Employee
Splunk Employee
‎03-11-2014 08:17 PM

i've contacted the Support team, you should receive an email from them shortly.

0 Karma
Reply

lukejadamec
Super Champion
‎03-11-2014 07:25 PM

Log in to splunk.com, select Support > Support Portal
Or, call your sales rep.

Reply
Get Updates on the Splunk Community!

Splunk Observability for AI

Don’t miss out on an exciting Tech Talk on Splunk Observability for AI!Discover how Splunk’s agentic AI ...

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

Watch On Demand the Tech Talk, and empower your SOC to reach new heights! Duration: 1 hour  Prepare to ...

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...