Deployment Architecture

Community Activity

	Licensing warning issued within 24 hour. Daily indexing volume limit exceeded. I had an issue with storage. I was at another site for 2 weeks and we reached the max limit on our drive. I had to ... by jalen1331 Loves-to-Learn in Deployment Architecture 10-06-2023 0 2	0	2
	HF to LM... is it one way or two way communication Hi Splunkers... Assumptions... The HF we want to deploy.. it should be inside a DMZ network, the license master is ou... by inventsekar SplunkTrust in Deployment Architecture 10-05-2023 0 5	0	5
	Can multisite architecture be on different cloud environments with index replication? If I have a multisite architecture with site A and site B, can they live on different cloud environments and still ha... by jwalrath1 Explorer in Deployment Architecture 10-04-2023 0 4	0	4
	Multi-Site Search Head Clustering I understand that there are 2 approved architectures for multi site search head clustering. One, where each site has ... by jwalrath1 Explorer in Deployment Architecture 10-04-2023 0 2	0	2
	How to disable an index on a Cluster Master using REST API Hello,I'm working with a Splunk cluster which has two slave peers and I need to disable an index on the Cluster Maste... by dhernandez New Member in Deployment Architecture 10-03-2023 0 1	0	1
	Isolated network on isolated network/no internet access considered a transport network. Is there a way to still use add ons/ apps? by Harley Engager in Deployment Architecture 10-03-2023 0 4	0	4
	Ssl cert update Hi Team ,In my Splunk Environment(Universal Forwarder) after updating SSL certificate I'm getting these error in Splu... by prasireddy Explorer in Deployment Architecture 10-02-2023 0 1	0	1
	Understanding Splunk Index Retention Hi, and sorry if this question was already answered in any other thread. Thanks in advance for the help.I had an inde... by felipesodre Path Finder in Deployment Architecture 10-01-2023 0 13	0	13
	How to acknowledge the blacklist working or not ?? Hi Everyone,I've recently applied a blacklist file path regex to one of the apps inputs.conf in the serverclass on th... by AL3Z Builder in Deployment Architecture 09-26-2023 0 3	0	3
	Error when sending windows events to splunk enterprise using powershell I am trying to send events from my host machine to splunk using HEC.My Function:Invoke-RestMethod -Method Post -Uri $... by 991423214 New Member in Deployment Architecture 09-24-2023 0 1	0	1
	splunk bootstrap shcluster-captain - getting Invalid uri in servers list “https://##.###.##.191:8089 [root@splunk-search-head-1 bin]# ./splunk bootstrap shcluster-captain -servers_list “https://##.###.##.191:8089,https... by mofsplunk1 Observer in Deployment Architecture 09-24-2023 0 3	0	3
	uncategorised.log file filling up /var in a Splunk Deployment Server Hello Splunk community,I have an issue with a Splunk Deployment Server where FS /var is of size 30Gb and currently 22... by gtrejos007 Engager in Deployment Architecture 09-22-2023 0 1	0	1
	Indexer server performance vs indexer cluster Hi Everybody,Could you pls explain which works faster - to have 1 indexer server, high performance (48CPU, 128GB) or ... by Adpafer Loves-to-Learn Everything in Deployment Architecture 09-22-2023 0 2	0	2
	Why Search Head Clustering is always show pending? Some Search Heads show "Up" status but other search heads are always show "Pending". I want to know that how to solve... by Beginner2 Observer in Deployment Architecture 09-21-2023 0 0	0	0
	Why Search Head in a Search Head Cluster is in manual detention, but still taking searches? I need to upgrade a Search Head Cluster from 7.3.4 to 8.1.9 and I have run the first two commands: splunk upgrade-ini... by BlueSocket Contributor in Deployment Architecture 09-21-2023 0 5	0	5
	Why is my license not showing data getting ingested? Hello All, Im having an issue where my license has stopped showing that any data is getting ingested. The data is sti... by CyberGuy1033 Engager in Deployment Architecture 09-20-2023 0 1	0	1
	Rebuilding a Splunk Search Head ? If a Splunk Search Head image is destroyed, but the rest of the servers/components are up and running including the D... by CyberGuy1033 Engager in Deployment Architecture 09-20-2023 0 2	0	2
	How to get an answer from search command in Splunk Enterprise? Hi, Splunk has been working for a long period without any trouble. When I changed settings yesterday (can't remember ... by gjhaaland Explorer in Deployment Architecture 09-19-2023 0 6	0	6
	Configurations for a "baseline" + "updates" type index Hi,I'm trying to figure out the most recommended way to set up an index that stores data ingested in the following ma... by cplunk Explorer in Deployment Architecture 09-19-2023 0 0	0	0
	Why Can't I connect to heavy forwarder GUI? I am getting a 500 internal server error when I try to connect to the HF GUI. I ran firewall-cmd --list-ports, and it... by jmrubio Path Finder in Deployment Architecture 09-18-2023 0 9	0	9
	Where to reallocate CPU cores, SH or IDX? Our Splunk environment is chronically under resourced, so we see a lot of this message:[umechujf,umechujs] Configurat... by DaClyde Contributor in Deployment Architecture 09-15-2023 0 4	0	4
	Splunk Alert: DMC Alert Total License Usage 90% Near Daily Quota My splunk index have a trouble Total License Usage 90% Near Daily Quotahow to solve it pls ? by minhquannguyen7 Engager in Deployment Architecture 09-15-2023 0 1	0	1
	How to find list of servers not managed by deployment server but transmitting data to Splunk Hi, Can anyone please help advise there is any quick way to find list of servers not managed by deployment server but... by Manish_Sharma Engager in Deployment Architecture 09-14-2023 0 1	0	1
	How to replicate the data to use the predict command? Hello Team, I need to use the predict command but currently i have only 110 data events therefore to have more data p... by gemrose Explorer in Deployment Architecture 09-14-2023 0 0	0	0
	How to create search for Multi-tenant? We are running Splunk ES and trying to make log search and app interfaces for each company. Let's call them Comp... by gmbdrj Loves-to-Learn Lots in Deployment Architecture 09-13-2023 0 1	0	1