Deployment Architecture

Community Activity

Azure Servers not powerful enough I had a quick question about the resources on my indexer. I have a dev environment with a forwarder, indexer, and SH.... by Abass42 Communicator in Deployment Architecture 07-04-2024 0 2	0	2
About splunk installation I am noob in SOC, currently started learning. I use Splunk for practice.. So recently, I installed Universal Forwarde... by arif751 New Member in Deployment Architecture 07-02-2024 0 1	0	1
Multisite Cluster Configuration Hello,I have the following question:I would like to set up a multisite cluster with the following structure:---------... by Roger_FB Explorer in Deployment Architecture 07-02-2024 0 4	0	4
Splunk Standalone High availability setup required servers. Hi team, Currently we are implemented the Standalone below servers,Zone-1EnvironmentServer NameIPSplunk RoleDEVL4 Se... by vijreddy30 Loves-to-Learn Everything in Deployment Architecture 07-01-2024 0 2	0	2
Deployer is throwing out error Hello I am building a new search head cluster, the cluster work fine, however the deployer is throwing error whenever... by adoumbia Engager in Deployment Architecture 06-29-2024 0 2	0	2
Splunk DB connect 3.17.2 fail to start Task Server on RHEL Linux machine From the documentation, I believe that the Task Server should start after I set up the JAVA_HOME, but it has been fai... by ww9rivers Contributor in Deployment Architecture 06-24-2024 0 0	0	0
Indexer acknowledgment and multisite clustering failure What happens if indexer acknowledgment is enabled and there is multisite clustering or minimum rf is not met due to i... by payl_chdhry Path Finder in Deployment Architecture 06-23-2024 0 1	0	1
I cannot renew my developer license I cannot renew my developer license according https://dev.splunk.com/enterprise/dev_license/. I get the same error co... by fengyu New Member in Deployment Architecture 06-21-2024 0 3	0	3
Why do I need to unbind the mgmt port in order to restart splunk? I was under the impression that port 8089 is used to manage the apps on your endpoints using the Settings > Forwarder... by splunktrainingu Communicator in Deployment Architecture 06-19-2024 0 6	0	6
Connecting the SH to the Indexer I have this question as a reference: Splunk Question I have one indexer, SH, and one forwarder. At some point, I had ... by Abass42 Communicator in Deployment Architecture 06-19-2024 0 2	0	2
Not access to Security contect in Splunk Security Essentials I can not access to Security Content dashboard because I recieve this message: by adrifesa95 Engager in Deployment Architecture 06-18-2024 0 1	0	1
Hardware Appliance Reference Architecture SPLUNK Environment requirements according to best practices for large companies in Splunk, installing Splunk ES in it, activ... by tuts Path Finder in Deployment Architecture 06-13-2024 0 5	0	5
OS Compatibility Hi all,we have a cluster on site1 that runs "CentOS Linux release 8.2.2004 (Core)" on kernal "4.18.0-348.7.1.el8_5... by hazem Path Finder in Deployment Architecture 06-13-2024 0 1	0	1
Move over indexes and their data to another mount I have a new indexer set up for dev, and I need to move its default SPLUNK_DB path to the mountpoints we have set up ... by Abass42 Communicator in Deployment Architecture 06-12-2024 0 0	0	0
splunk ES I set the alart to High and security Domaiin = Network, but it appears to me in the Incident Review interface that it... by tuts Path Finder in Deployment Architecture 06-12-2024 0 0	0	0
forwarded data remove timestamp and host is there a way to remove the header comes with non syslog source types that include hostname and timestamp with prior... by KhalidAlharthi Explorer in Deployment Architecture 06-10-2024 0 4	0	4
Deployment Server Upgrade 9.2.1 and Server Class Hi Everyone,Is anyone else having issues with the Client tab not showing the correct Server Classes for the Host Name... by tasteless_dove Engager in Deployment Architecture 06-10-2024 1 7	1	7
multi-site cluster replication -in multi-site cluster if initially, the replication factor wassite_replication_factor = origin:2,total:2site_search_... by hazem Path Finder in Deployment Architecture 06-10-2024 0 3	0	3
Duplicate logs via modular input Hi Team,We are using modular input to ingest the logs into splunk, we have checkpoint file, but we see duplicate logs... by VijaySrrie Builder in Deployment Architecture 06-10-2024 0 3	0	3
multi-site We have been running our indexer cluster as a multisite cluster with 3 indexers in our main site for the past year.w... by hazem Path Finder in Deployment Architecture 06-09-2024 0 5	0	5
cold path not exis hello all, we have multi-site cluster master and we do not want a cold mount in the DR indexers.is it applicable? If... by hazem Path Finder in Deployment Architecture 06-09-2024 0 1	0	1
Is there a way to reset client list on Deployment server without restarting Looking for ways to refresh client list that phone homes to Deployment server without restarting splunk service or ta... by payl_chdhry Path Finder in Deployment Architecture 06-06-2024 0 2	0	2
what could be a deployment server IP for splunk enterprise? Hello.I want to deploy Splunk Enterprise on my machine.and I am installing Universal Forwarder and I can't figure out... by R4M4L3 New Member in Deployment Architecture 06-05-2024 0 1	0	1
What is Splunk Search Head ? Can someone help me to get more idea on Splunk Search Head and how it work's ? by thevikramyadav Explorer in Deployment Architecture 06-04-2024 0 1	0	1
Indexer indexing too much I've been fighting this for a week and just spinning in circles.I'm building a new distributed environment in a lab t... by jessieb_83 Path Finder in Deployment Architecture 06-01-2024 0 2	0	2