Deployment Architecture
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Is it possible to deploy Splunk Enterprise environment with this servers?

tsyasuo
Engager
‎02-14-2021 07:27 PM

Hi! 

This is our first time to deploy Splunk Enterprise environment.

So, I would like to confirm the composition of our servers for Splunk Enterprise.

[Question]
Is it possible to deploy Splunk Enterprise environment with the following servers?
1. Search Head (1 server)
2. Indexer (2 servers with clustering)
3. Deployment server and License Master (1server)
4. Cluster Master(1server)

We will use this environment for 1st step of Splunk utilize. 
(This is an environment where the current status of the 1st step can be created while waiting for the 2nd step hardware to be built.)

We will create the environment for 2nd step. If the 2nd step environment is deployed, we will change connection setting of universal forwarder from 1st step environment to 2nd step environment.

Best, Regards.


Labels (2)
0 Karma
Reply

scelikok
SplunkTrust
SplunkTrust
‎02-14-2021 09:16 PM

Hi @tsyasuo,

As a first step seems fine with missing Monitoring Console. You can run Monitoring Console in Cluster Master instance in first step. You can consider moving Monitoring Console  to separate instance on second step.

You can check below pdf for Splunk Validated Architectures. Your first step is like C1.

https://www.splunk.com/pdfs/technical-briefs/splunk-validated-architectures.pdf 

If this reply helps you an upvote and "Accept as Solution" is appreciated.
Reply

tsyasuo
Engager
‎02-15-2021 01:14 AM

Hi @scelikok ,

Thank you for your reply. This answer will help me a lot.
I will proceed with that servers and settings.

Best Regards.


0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Register for .conf25!
Get Updates on the Splunk Community!

Introduction to Splunk AI

How are you using AI in Splunk? Whether you see AI as a threat or opportunity, AI is here to stay. Lucky for ...

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...

Maximizing the Value of Splunk ES 8.x

Splunk Enterprise Security (ES) continues to be a leader in the Gartner Magic Quadrant, reflecting its pivotal ...