Deployment Architecture
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Splunk free - setting up a distributed environement (Search Head, 1 IDX, 1 UF, maybe a deployment server)

spluzer
Communicator
‎05-07-2021 10:06 AM

Hey Splunksters,

My work environment is switching from Windows (large distributed enviro) to Linux pretty soon.

I'd like to get familiar with architecting in Linux so I had a couple of questions:

I'm wondering if I can simply spin up 3-5 aws linux vm's and use the free version of splunk to get familiar with the process of creating a distributed enviro (assigning a search head, 1 idx, maybe couple of forwarders and a deployment server using the free splunk??? 

Or, is the free splunk Enterprise only good for 1 download on 1 machine ??

Thanks!


Labels (1)
Labels
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

harsmarvania57
Ultra Champion
‎05-07-2021 10:09 AM

Hi,

 

Yes you can setup multiple VMs for different Splunk role with Splunk Entrprise (which has 500MB license for 60 days).

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

harsmarvania57
Ultra Champion
‎05-07-2021 10:09 AM

Hi,

 

Yes you can setup multiple VMs for different Splunk role with Splunk Entrprise (which has 500MB license for 60 days).

0 Karma
Reply
Solved! Jump to solution

isoutamo
SplunkTrust
SplunkTrust
‎05-07-2021 02:35 PM
But you cannot use separate LM. Use local trial licenses in all nodes.
0 Karma
Reply
Solved! Jump to solution

ragedsparrow
Contributor
‎05-07-2021 10:08 AM

Greetings,

Splunk Free is only available for a single, stand-alone instance.  You will be unable to build a distributed environment with a Splunk Free license.

0 Karma
Reply
Solved! Jump to solution

ragedsparrow
Contributor
‎05-07-2021 10:19 AM

However, as previously mentioned, you could use the Splunk Enterprise Trial license to do what  you're wanting.

0 Karma
Reply
Get Updates on the Splunk Community!

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

 Splunk is More Than Just the Web Console For Digital Forensics and Incident Response (DFIR) practitioners, ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...