Deployment Architecture

Discussions

Thread Info

[smartstore] splunk smartstore and Data integrity

This question has come up a few times, how does Splunk handle data integrity in large ES implementation. On Splunk do...

by Splunk Employee in

What type of restart happens during a normal indexer cluster rolling restart?

When an indexer is restarted during a normal rolling restart, does it shutdown via the `offline` method? Or does it d...

by SplunkTrust in

Splunk free - setting up a distributed environement (Search Head, 1 IDX, 1 UF, maybe a deployment server)

Hey Splunksters,My work environment is switching from Windows (large distributed enviro) to Linux pretty soon.I'd lik...

by Communicator in

Custom deployment app - separate configs for search heads and forwarders

This is my architecture: 1. A deployment server (DS) with apps within deployment-apps folder 2. Two search heads ...

by Explorer in

How to use Heavy Forwarder servers as a Deployment Server?

Is it possible to use Heavy Forwarder servers as a Deployment Server? Because we have a current implementation scenar...

by Path Finder in

Deployment Server Separate from Heavy Forwarder

Hi everyone, Our deployment consists of an on prem deployment server, on prem heavy forwarder and Splunk Cloud...

by Explorer in

splunk indexer: status: "pending", fully searchable: "no". How to fix?

After updating a bucket replication policy and doing a rolling restart of cluster indexers, one of the indexers seems...

by Contributor in

why cluster master distribute an app instead of necessary conf files?

Hi According to the document here, cluster master distributes an app under indexer clustering environment. ht...

by Path Finder in

Can you see stats from the forwarder console from Linux CLI

Can you see stats from the forwarder console from Linux CLI instead?

by Path Finder in

Can I download the forwarder with sha1?

Can I download the forwarder with sha1? I only see MD5 offered, but the BigFix script we have needs sha1.

by New Member in

Would Data Rebalance of Primary Cluster Buckets Work on RepFactor=1?

We have a 51-Node Index Cluster where we do not replicate Index bucket copies. We only have a primary copy of the buc...

by Path Finder in

Deployment Server Connection Errors

Greetings, I'm hosting a Splunk Deployment Server in a Kubernetes environment. When I'm using one replica, connect...

by Path Finder in

Certificate Template for a Server Cert

Hello, I have a Windows CA Server to sign my own requests. For the Web Certificate I have used the "Web Server" t...

by Engager in

smart store : S3 bucket config on Splunk Cloud

I have a Splunk cloud and trying to find where to configure S3 Bucket info for smart store?

by New Member in

What is the best practice to backup Splunk?

Hi, We have Splunk v. 6.3.3 multi site indexer cluster (8 indexers), 4 search heads, deployment server. What's the be...

by Builder in

where i can get endgame Add on for Splunk enterprise 8.1.2

Hi Team, I am running Endgame API Add on 1.2.1 on my heavy forwarder(version 7.2.6). I am planning to upgrade H...

by Loves-to-Learn Lots in

How to install Unified Forwarder Monitoring App for Splunk ?

Hello everyone I'm looking for how to monitor status of forwarders. I have seen this app " Unified Forwarder Monito...

by Explorer in

Automate Splunk configuration files backup on day basis

Hi, I'd like to automate Splunk config files backup process for every 24 hours. Is there any Apps/Scripts avail...

by Explorer in

I am getting a lot of Internal Server Error 500 with in an App

I created an app contain most of the required element include macro, lookup, navigator, UI, savedsearches, etc. howe...

by Explorer in

'Local side shutting down' error on a search head after applying shcluster bundle

Hello everyone,After adding some data to Splunk and running apply cluster bundle & apply shcluster bundle commands, s...

by Explorer in

Deployment Architecture

Discussions

[smartstore] splunk smartstore and Data integrity

What type of restart happens during a normal indexer cluster rolling restart?

Splunk free - setting up a distributed environement (Search Head, 1 IDX, 1 UF, maybe a deployment server)

Custom deployment app - separate configs for search heads and forwarders

How to use Heavy Forwarder servers as a Deployment Server?

Deployment Server Separate from Heavy Forwarder

splunk indexer: status: "pending", fully searchable: "no". How to fix?

why cluster master distribute an app instead of necessary conf files?

Can you see stats from the forwarder console from Linux CLI

Can I download the forwarder with sha1?

Would Data Rebalance of Primary Cluster Buckets Work on RepFactor=1?

Deployment Server Connection Errors

Certificate Template for a Server Cert

smart store : S3 bucket config on Splunk Cloud

What is the best practice to backup Splunk?

where i can get endgame Add on for Splunk enterprise 8.1.2

How to install Unified Forwarder Monitoring App for Splunk ?

Automate Splunk configuration files backup on day basis

I am getting a lot of Internal Server Error 500 with in an App

'Local side shutting down' error on a search head after applying shcluster bundle

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!

Submit Now! >

What type of restart happens during a normal index...

Can I download the forwarder with sha1?

Would Data Rebalance of Primary Cluster Buckets Wo...

'Local side shutting down' error on a search head ...

UF not sending data to HF on 9997

Deployment Architecture

Discussions

Don't miss your chance to share your Splunk wisdom in-person or virtually at .conf21!Call for Speakers hasbeen extended throughThursday, 5/20! Submit Now! >

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!

Submit Now! >