Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

store collected syslog data on NFS

dominiquevocat
SplunkTrust
SplunkTrust
‎05-25-2011 01:46 AM

Hi,

i would like to run a splunk instance on a unix box. This splunk should receive syslog messages. How do i set up that splunk should store the received data (not the index) on a path that is on a NFS share?

Reason: the box where splunk runs is for the service/search head whereas the storage is on a very different device with lots of space.

Tags (2)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

MuS
SplunkTrust
SplunkTrust
‎05-25-2011 01:52 AM

Hi dominiquevocat

take a look here http://splunk-base.splunk.com/answers/24863/where-splunk-store-syslog-data it's about the same.

regards

View solution in original post

Reply
Solved! Jump to solution

jbsplunk
Splunk Employee
Splunk Employee
‎05-25-2011 08:26 AM

In general, I would not recommend nfs as a filesystem to store indexed data on except in very specific circumstances. For hot and warm data, the risk of corruption exceeds my threshold for comfort.

http://splunk-base.splunk.com/answers/250/can-splunk-read-data-to-index-off-an-nfs-mount-can-splunk-...

0 Karma
Reply
Solved! Jump to solution
Solution

MuS
SplunkTrust
SplunkTrust
‎05-25-2011 01:52 AM

Hi dominiquevocat

take a look here http://splunk-base.splunk.com/answers/24863/where-splunk-store-syslog-data it's about the same.

regards

Reply
Solved! Jump to solution

dominiquevocat
SplunkTrust
SplunkTrust
‎05-25-2011 02:16 AM

Saw it too late but yeah, fits the bill. Thank you anyway.

0 Karma
Reply
Get Updates on the Splunk Community!

Reduce and Transform Your Firewall Data with Splunk Data Management

Managing high-volume firewall data has always been a challenge. Noisy events and verbose traffic logs often ...

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

If you’ve ever deployed a new database cluster, spun up a caching layer, or added a load balancer, you know it ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Financial fraud isn't slowing down. If anything, it's getting more sophisticated. Account takeovers, credit ...