Installation

Is it possible to designate a specific directory for logs to be stored in Splunk Enterprise during installation?

epost_triplepoi
Engager

Hello,

I'm trying to install Splunk on a Linux server in Amazon Web Services (AWS) and I would like to have the log location be on an NFS-mounted drive (Elastic File System or EFS in AWS). This will allow me to use an NFS drive that automatically expands/contracts with the amount of logs that I am consuming. This is for the logs that are sent to Splunk and not the local logs that Splunk generates.

Is there a way to designate a specific directory for logs during install? If not, is there a way I can mount the NFS/EFS directory over a specific directory and do I need to copy any specific files (defaultdb?) over?

Thanks for your help,
Eric

Labels (2)
0 Karma
1 Solution

sundareshr
Legend

sundareshr
Legend

@epost_triplepoint, if this helped answer your question, please mark it accepted to close it out. Thanks

0 Karma

epost_triplepoi
Engager

Thank you, Sundareshr

0 Karma
Get Updates on the Splunk Community!

.conf24 | Day 0

Hello Splunk Community! My name is Chris, and I'm based in Canberra, Australia's capital, and I travelled for ...

Enhance Security Visibility with Splunk Enterprise Security 7.1 through Threat ...

 (view in My Videos)Struggling with alert fatigue, lack of context, and prioritization around security ...

Troubleshooting the OpenTelemetry Collector

  In this tech talk, you’ll learn how to troubleshoot the OpenTelemetry collector - from checking the ...