Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Are there any ways to increase the performance of our forwarder's current file monitor reading syslog files at 10MB/sec?

Mag2sub
Path Finder
‎11-05-2014 12:42 AM

We have a forwarder file monitor reading syslog files being churned out 10MB/sec...are there any tweaks to increase performance of the file monitor

Also this forwarder outputs to 2 indexers in LB mode ... do these block when both receivers go down ?

Appreciate inputs

0 Karma
Reply

somesoni2
Revered Legend
‎11-05-2014 04:36 PM

You can set the thruput on the forwarder to unlimited by setting maxKBps attrubute. See below

http://answers.splunk.com/answers/7750/increase-throughput-limit-on-a-lightweight-forwarder.html

0 Karma
Reply

Mag2sub
Path Finder
‎11-05-2014 08:34 PM

To clarify this is a HWF? any suggestions for HWF
Other than performance
and any attributes for availability also appreciate ...for ex if both receivers go down ...does HWF block ?

0 Karma
Reply

musskopf
Builder
‎11-05-2014 02:21 PM

10Mb/s should be fine but remember that Universal Forwarders are limited to use only 256Kbp/s of bandwidth. Ref.: http://answers.splunk.com/answers/29538/maxkbps-option-and-limiting-a-forwarders-rate-of-thruput.htm...

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Decoded: Service Maps vs Service Analyzer Tree View vs Flow Maps

It’s Monday morning, and your phone is buzzing with alert escalations – your customer-facing portal is running ...

What’s New in Splunk Observability – September 2025

What's NewWe are excited to announce the latest enhancements to Splunk Observability, designed to help ITOps ...

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...